Printed from http://www.electronista.com

Secret Service expands investigation of Target, UPS PoS malware

updated 12:20 pm EDT, Sat August 23, 2014

'Backoff' malware has infected 1,000 businesses across US

Target isn't the only US retailer affected by the "Backoff" point of sale malware. Following forensic analysis of the intrusion software, researchers for US government law enforcement have claimed that more than 1,000 businesses have been infected by the same strain that assaulted the big-box retailer, and now UPS storefronts.

Over the past year, the Secret Service has responded to network intrusions at numerous businesses throughout the United States that have been impacted by the "Backoff" malware. In the course of the investigation, the Secret Service identified seven point-of-sale system providers that have had multiple clients affected. Investigation continues on additional compromised locations, involving private sector entities of all sizes.

Target knew of its 2013 "Black Friday" data breach much earlier than it said it did. The company was alerted by security firm FireEye that there was a potential problem as early as November 30, but no action was taken. Additionally, auditors discovered that Target had disabled features of its security suite that could have removed the infection, prior to it purloining millions of sets of customer's payment method data.

In a related development, the UPS Store reports that customers' information could have been exposed by the same malware. This includes names, physical addresses, email address and credit and debit card information -- nearly identical to the earlier Target breach.

The Secret Service is contacting impacted businesses as they are identified, and continues to work with and support those businesses that have been impacted by this particular strain of malware. Companies that believe they have been the victim of this malware should contact the local Secret Service field office for assistance.



By Electronista Staff
Post tools:

TAGS :

toggle

Comments

  1. chimaera

    Forum Regular

    Joined: 04-08-07

    I'd expect the FBI to look into this, whenever they can spare a moment from domestic terrorist hunts. The Secret Service investigates counterfeiting and provides presidential security. I'm pretty sure POS hacks do not threaten the President, or involve freshly-dried bills.

  1. climacs

    Forum Regular

    Joined: 09-06-01

    http://www.secretservice.gov/ectf.shtml


    "On October 26, 2001, President Bush signed into law H.R. 3162, the USA PATRIOT Act. The U.S. Secret Service was mandated by this Act to establish a nationwide network of Electronic Crimes Task Forces (ECTFs). The concept of the ECTF network is to bring together not only federal, state and local law enforcement, but also prosecutors, private industry and academia. The common purpose is the prevention, detection, mitigation and aggressive investigation of attacks on the nation's financial and critical infrastructures."

Login Here

Not a member of the MacNN forums? Register now for free.

toggle

Network Headlines

toggle

Most Popular

Sponsor

Recent Reviews

ActvContent Sync Smartband

Smartbands of all sorts are hitting the market. Some build on the buzz around fitness trackers, while others offer simpler features fo ...

RocketStor 6324L Thunderbolt 2 eSATA bridge

Like it or not, the shift to Thunderbolt is underway. The connection is extremely flexible, allowing for video and data to co-habitate ...

Patriot Stellar Boost XT 64GB USB 3.0 drive

A vast selection of USB memory sticks means that consumers can often find exactly the size drive they need in a configuration that can ...

Sponsor

toggle

Most Commented

 
toggle

Popular News