Retailers Beware: BlackPOS Continues To Attack Merchants In The U.S.

BlackPOSIt hasn’t been that long since the Target Corp. and Neiman Marcus security breaches, and now cybersecurity firm IntelCrawler has discovered at least six ongoing attacks at other U.S. merchants.

Retailers in California and New York were among those compromised by the latest attacks. They haven’t revealed how many individuals were affected.

It appears the retailers’ credit card processing systems were infected with the same malicious software used to steal data from Target and Neiman Marcus. It’s called BlackPOS and was developed by a 17 year-old hacker living in St. Petersburg, Russia, whose nickname is “Ree4.”

BlackPOS is a RAM scraper that allows cybercriminals to steal encrypted data by grabbing it when it’s in plain text as it travels through the memory of a computer. The fear is that copycat cybercriminals will use similar software which is now available online.

iSIGHT Partners is helping the U.S. Secret Service investigate the attacks.  They believe the pace of these attacks will increase.  Most of the attacks to date have occurred in the U.S., but about 30 percent took place in other countries, including Australia and Canada.

Credit card companies, banks and retailers say individuals affected by the theft will be credited for the fraudulent purchases.  However, debit card fraud could result in money being drained from a bank account, mutual fund or other cash account.   

What You Should Do.

  • Watch for unauthorized activity on your debit or credit card and if found, alert your card issuer immediately.
  • Don’t open random or suspicious emails.
  • Save your receipts and compare them to your credit and debit card statements.
  • Obtain a free copy of your credit report.

For more information about protecting your confidential business data, contact Slivertip IT by calling (425) 998-9199 or by email at:  

IT Support Companies in Seattle

“I can’t emphasize enough how much we rely on and trust the IT professionals from Silvertip IT. Silvertip is always available when needed, whether remotely, in our office, or over the phone.  We can rely on Silvertip IT whether it’s during office hours, evening hours, or on weekends. And believe me, we needed them because before they we found Silvertip we had our share of IT issues!”

-Shimizu and Shimizu CPA
read more»