Fortinet finds fresh variant of point-of-sale malware Backoff

Most recent version even more proficient at evading detection, analysis

Tags: Cyber crimeFortinet Incorporation
  • E-Mail
Fortinet finds fresh variant of point-of-sale malware Backoff
By  Stephen McBride Published  November 11, 2014

Network security specialist, Fortinet, today said its researchers have discovered a fresh variant of the Backoff point-of-sale malware family.

Designated "211G1", the variant was "leveraging sophisticated techniques to hinder the analysis process and evade detection", according to a statement from Fortinet.

"The newest version, detected as W32/Backoff.C!tr.spy, is now equipped with code that maps the image to its original base address before continuing to execute, putting [in] even more roadblocks to the analysis process," Fortinet said.

The malware hides in the user's application data folder and is designed to steal credit card numbers from point-of-sale terminals.

Fortinet claimed it is one of two security companies able to detect and block the malware.

Add a Comment

Your display name This field is mandatory

Your e-mail address This field is mandatory (Your e-mail address won't be published)

Security code