Feds Warn Retailers About Malicious Software
George Frey/Bloomberg via Getty Images
BOSTON -- The U.S. Department of Homeland Security warned retailers about a type of malicious software attacking point-of-sales systems, dubbed "Backoff," that it said is undetectable by most types of antivirus software.

The agency released a 10-page advisory about the payment-card-stealing virus Backoff on Thursday, saying it has been observed in at least three forensic investigations into breaches of payment systems.

The U.S. government has released reports on several types of malicious software that cybercriminals used to steal payment cards in the wake of last year's unprecedented breach at Target (TGT), which resulted in the theft of some 40 million payment card numbers.

Backoff is a family-of-point of sale malware first identified in October 2013 and with capabilities that include scraping memory for track data, logging keystrokes and injecting malicious stub into explorer.exe files, DHS said.

It said attackers use publicly available tools to find businesses that use remote desktop applications, then gain access to an administrative account to insert the malware.

The DHS advisory warned that such malware put both the business and consumer at risk, exposing data including names, credit card numbers, email addresses, mailing address and phone numbers.

"These breaches can impact a business' brand and reputation, while consumers' information can be used to make fraudulent purchases or risk compromise of bank accounts," it said.


Increase your money and finance knowledge from home

Goal Setting

Want to succeed? Then you need goals!

View Course »

Timing Your Spending

How to pay less by changing when you purchase.

View Course »

Add a Comment

*0 / 3000 Character Maximum

8 Comments

Filter by:
Adele

Shitt: Muslims in the White House??? what about the idiots LIKE YOU on AOL FINANCE?
Your ignorance is more of a threat to this country than Muslims are.

July 31 2014 at 4:36 PM Report abuse -1 rate up rate down Reply
Iselin007

Too bad the down side of tech is costing us jobs and money.

July 31 2014 at 3:08 PM Report abuse +2 rate up rate down Reply
chitt9111

ed snowden exposed the muslim clowns spying on all Americans n his obsting n sabotaging n holding all Americans hostage for the last 5 plus years now. !!! remove the muslim clown out of our white house in handcuffs in 2014 n deport him n all hi illegal immigrants he let "BREAK" into America. !!!

July 31 2014 at 1:44 PM Report abuse -3 rate up rate down Reply
mvr1464

Not being a computer geek, it seems that the problem lies with the software writers who write code that is penetrable.

July 31 2014 at 1:33 PM Report abuse +3 rate up rate down Reply
1 reply to mvr1464's comment
Iselin007

Maybe your right then again maybe there are just a lot of geeeky crooks taking advantage of coding skills. Too many people have access to other peoples info. There are teens hacking into government and corporate computers so immagine what some geek with years of experience can do. Tech has gotten out of control, cost a lot of people their jobs, and now foreign nationals are picking through your personal data.

July 31 2014 at 3:03 PM Report abuse +4 rate up rate down Reply
Iselin007

Considering the lack of good full time jobs many of the victims have very little credit to steal.

July 31 2014 at 1:02 PM Report abuse +4 rate up rate down Reply
Iselin007

Gee an none of these imported tech workers are involved or had any knowledge of whose making this software? I think your kidding yourself if you think people getting these work visas in tech aren't involved in these data skimming software crimes.

July 31 2014 at 12:57 PM Report abuse +5 rate up rate down Reply
rrob.smythe

Get Em Snowden ! LMAO

July 31 2014 at 11:43 AM Report abuse -3 rate up rate down Reply