Latest News: Technology |  Celebrity |  Movies |  Apple |  Cars |  Business |  Sports |  TV Shows |  Geek

Trending

Filed under: News

 

Did Target Malware Teen Take A Piece Of The Pie?

1 Updates
Did Target Malware Teen Take A Piece Of The Pie?
Photo Credit: Forbes
 
 

Comments

Full Story

Did Target Malware Teen Take A Piece Of The Pie?

Security firm title="intelcrawler on target malware teen">IntelCrawler has released evidence supporting the identity of the programmer behind the BlackPOS malware that infected Target and other major U.S. retailers as the 17-year-old Russian teen shown above. Brian Krebs has been on his trail as well, but IntelCrawler CEO Andrew Komarov posed as a cyber criminal himself in order to chat in Russian with the purported perpetrator (handle: ree4) who has “sold more then 40 builds of BlackPOS to cybercriminals from Eastern Europe and other countries.”

As I reported earlier this week, the underlying malware comes cheap. Intriguingly, Komarov reports that ree4 was willing to sell the BlackPOS malware “for 2 000 USD or by receiving 50% from selling of all intercepted credit cards by his customer through Liberty Reserve.” Does this mean that this Russian teen could be getting a cut of some of these big retail hits? Unlikely, unless his code is very idiosyncratic and he provided a very custom build of it for the Target crooks or others.

According to the IntelCrawler research, BlackPOS was first discovered “in the wild” in March of 2013 and a server at Neiman Marcus was infected in mid-July. From Komarov’s exchange with ree4 it is clear that for this malware “you need standalone Point-of-Sale terminals with monitor and Windows.” It does not work with Verifone systems, because they secure the credit card data before passing it to a PC where it can be scraped from RAM by BlackPOS.

As a consumer, this would mean that retailers using Verifone systems are immune from this threat, but given the widespread nature of the BlackPOS attacks there is no telling how many other types of attacks are in progress that have not come to light yet.

Perhaps all of this activity is prelude to the iWallet or some other form of app-based point-of-sale standard by Apple, Google or some consortium, that will gain traction quickly because the vulnerabilities of the old system have become too great. And you can bet that smartphone POS malware will follow any such developments. This is a case, as I have suggested in discussions of Apple’s TouchID technology, where the closed nature of the iOS platform will be seen as a great benefit.

Square and other innovators in the POS market also stand to gain from the insecurity of traditional checkout terminals. These companies should be doubling down on security to make sure that they emerge as viable alternatives as the retail environment becomes increasingly insecure. Target itself would do well to find the best such alternative and implement it in a high-profile way. Disruption, however, may be the last thing this beleaguered retailer is thinking about at the moment as it hope to maintain business as usual.

– – – – – – – – – – – – – – – – – – – –

To keep up with Quantum of Content, please subscribe to my updates on Facebook, follow me on Twitter and App.net or add me on Google+.

10 Incredibly Simple Things You Can Do To Protect Your Privacy

Source: Forbes

 

iPad Air Giveaway. Win a free iPad Air.

You Might Also Like

Updates


Sponsored Update

Update: 1

Centurion Corp acquires Penang land to develop workers dorm

Source: The Edge Singapore

Centurion Corporation said it has agreed to acquire a piece of land located at Seberang Perai Selatan in Penang, Malaysia, for RM6.3 million ($2.45 million). This marks the group’s first acquisition in another state of Malaysia outside of Johor. Read more... ...
Source: The Edge Singapore   Full article at: The Edge Singapore Aug 12 2014, 9:21am CDT
 


Advertisement


More From the Web

Shopping Deals

 
 
 

<a href="/latest_stories/all/all/31" rel="author">Forbes</a>
Forbes is among the most trusted resources for the world's business and investment leaders, providing them the uncompromising commentary, concise analysis, relevant tools and real-time reporting they need to succeed at work, profit from investing and have fun with the rewards of winning.

 

 

Comments

blog comments powered by Disqus

Latest stories

Kelly Ripa takes on the ALS Ice Bucket Challenge with Hubby
Kelly Ripa takes on the ALS Ice Bucket Challenge with Hubby
Kelly Ripa and her hubby, Mark Consuelos, took on the ALS Ice Bucket Challenge. She also nominated her three children as the next participators in the awareness raiser.
 
 
Apple iPhone 6 Display Delay creates New Hurdles
Apple iPhone 6 Display Delay creates New Hurdles
Display screen delay and related problems in the Apple iPhone 6 has created new hurdles for the suppliers of the company.
 
 
Iggy Azalea is an Asset for the Regular Music Circuit
Iggy Azalea is an Asset for the Regular Music Circuit
The Aussie, Iggy Azalea has become an asset for the regular music circuit. She will furthermore be a headliner for the SLS party which is to take place in Las Vegas, Nevada.
 
 
Lauryn Hill dedicates her Song Black Rage to Ferguson Citizens
Lauryn Hill dedicates her Song Black Rage to Ferguson Citizens
The Fugees singer, Lauryn Hill has dedicated her song Black Rage to the citizens of Ferguson, Missouri.
 
 
 

About the Geek Mind

The “geek mind” is concerned with more than just the latest iPhone rumors, or which company will win the gaming console wars. I4U is concerned with more than just the latest photo shoot or other celebrity gossip.

The “geek mind” is concerned with life, in all its different forms and facets. The geek mind wants to know about societal and financial issues, both abroad and at home. If a Fortune 500 decides to raise their minimum wage, or any high priority news, the geek mind wants to know. The geek mind wants to know the top teams in the National Football League, or who’s likely to win the NBA Finals this coming year. The geek mind wants to know who the hottest new models are, or whether the newest blockbuster movie is worth seeing. The geek mind wants to know. The geek mind wants—needs—knowledge.

Read more about The Geek Mind.