Prilex POS malware evolves to block contactless transactions

2023-02-02 15:35

Prilex is particularly experienced with payment markets, electronic funds transfer software and protocols, and the threat actor has recently updated its POS malware to block contactless transactions to steal your credit card information.

This resulted in cybercriminals' POS malware seeing a huge decrease in the number of transactions it could abuse.

In GHOST transactions, the malware sits on the device, intercepting all communications between the POS software and the PIN pad. Once a transaction is ongoing, the malware intercepts the transaction content and modifies it in order to capture the credit card information and request new EMV cryptograms to the victims card.

As such malware is useless on usual endpoints, it needs to be executed on the computers who actually run the POS software and deal with payments.

As a company using POS systems, establish a detailed process with the POS provider in order to avoid any social engineering scams.

All contacts between the POS software customer and the POS software provider need to follow specific rules that should be discussed over a secure channel and known by anyone who could access the devices running the POS software.

News URL

https://www.techrepublic.com/article/prilex-pos-malware-evolves/

#malware #POS