Boston, MA. (PRWEB) April 05, 2016
In the wake of a considerable number of high profile retailer and hospitality Point of Sale data compromises, leading Digital Forensics and Incident Response specialist, Foregenix, has detected a new strain of payment card harvesting malware, called TinyPOS.
Two variants were recently identified during the forensic investigation of a merchant franchise, both variants of the TinyPOS malware are designed to identify payment card data in active process memory, harvest the data and send it to a Command and Control server – currently in Eastern Europe. Named to reflect the minimal size of the malware, TinyPOS is a paltry 5kb in size – a very small file with a highly effective payload. Additionally, TinyPOS has proved to evade detection by major anti-malware detection and prevention solutions.
Foregenix detected TinyPOS through Foregenix proprietary incident response software, Serengeti, which provides near-real time forensic telemetry across a distributed estate, enabling Foregenix Digital Forensics and Incident Response (DFIR) analysts to rapidly detect anomalies and contain attacker activity across breached systems.
Foregenix is working with financial and law enforcement agencies to provide further information on TinyPOS, as well as rapid response services to businesses in the retail and hospitality sectors suspected of having been breached.
For more information on TinyPOS, please visit http://blog.foregenix.com.
Foregenix is an independent, specialist information security business, headquartered in the United Kingdom, with further offices in the United States of America, South Africa and Uruguay, with a global service capability.
The Foregenix team has been intimately involved with the Payment Card Industry since the inception of the security standards in 2004, and has carried out forensic investigations and compliance assessments on hundreds of organizations, ranging from national banks through small online stores. With the leading Point-to-Point Encryption advisory service, Foregenix has certified over 40% of the P2PE solutions and 80% of the P2PE applications globally.
Furthermore, through their work in digital forensics and incident response, Foregenix is positioned at the bleeding edge of the ever-changing cyber threat landscape. This has allowed the team to develop a suite of security and risk reduction solutions to pro-actively secure their clients.