Point-of-sale (POS) terminals – Treasure for RAM scrapers
RAM scrapers are scouring the RAM of point-of-sale (POS) terminals, where PINs and other credit card data is stored in clear.
Verizon employees recently found the malware on the POS server of an unnamed resort and casino that had an unusually high number of customers who had suffered credit card fraud. The malware was sophisticated enough to log only payment card data rather than dumping the entire contents of memory. That was crucial to ensuring the malware didn’t create server slowdowns that would tip off administrators.
The RAM scraper dumped the data onto the server’s hard drive. The perpetrators visited at regular intervals through a backdoor on the machine to collect the booty.
Its not a new attack but rapidly getting on top of the hackers’ chart.