New PoS Trojan Steals Card Data, Intercepts Browser Requests

September 18, 2015

Via: malware

Researchers from anti-virus firm have discovered designed to infect point-of-sale () terminals and capable of intercepting GET and POST requests sent from Web browsers on infected machines.

Dubbed Trojan.MWZLesson, the Trojan can modify the registry branch in charge with autorun on the infected PoS terminals, while also being able to check the device’s RAM for credit card , the security firm said.

All of the acquired bankcard data along with intercepted communication, including GET and POST requests, is sent to the command and control server. However, the malware is also capable of executing a series of commands, which makes it even more dangerous.

Read More