Posts Tagged ‘PoS-malware’

bank cardsSeculert’s experts found specialized malware steals details of bank cards of sale terminals under Windows.

The malware, named Dexter, is introduced into the system process iexplore.exe, providing it with a restart when disconnected by hand and prepare a list of active processes, each determines the available memory space, it reads in a local buffer, using the ReadProcessMemory, and exposes dump analysis (parsing ), looking for the information to be copied and sending.

According to the blog post ‘Kaspersky Lab’, Dexter interested in data tracks 1 and 2 plastic cards: the owner’s name, expiration date and card number, including the code of the issuer, class and type of card, account number, sometimes – the country code. This information is sufficient to produce a fake. (more…)