Printed from http://www.electronista.com

Secret Service expands investigation of Target, UPS PoS malware

updated 12:20 pm EDT, Sat August 23, 2014

'Backoff' malware has infected 1,000 businesses across US

Target isn't the only US retailer affected by the "Backoff" point of sale malware. Following forensic analysis of the intrusion software, researchers for US government law enforcement have claimed that more than 1,000 businesses have been infected by the same strain that assaulted the big-box retailer, and now UPS storefronts.

Over the past year, the Secret Service has responded to network intrusions at numerous businesses throughout the United States that have been impacted by the "Backoff" malware. In the course of the investigation, the Secret Service identified seven point-of-sale system providers that have had multiple clients affected. Investigation continues on additional compromised locations, involving private sector entities of all sizes.

Target knew of its 2013 "Black Friday" data breach much earlier than it said it did. The company was alerted by security firm FireEye that there was a potential problem as early as November 30, but no action was taken. Additionally, auditors discovered that Target had disabled features of its security suite that could have removed the infection, prior to it purloining millions of sets of customer's payment method data.

In a related development, the UPS Store reports that customers' information could have been exposed by the same malware. This includes names, physical addresses, email address and credit and debit card information -- nearly identical to the earlier Target breach.

The Secret Service is contacting impacted businesses as they are identified, and continues to work with and support those businesses that have been impacted by this particular strain of malware. Companies that believe they have been the victim of this malware should contact the local Secret Service field office for assistance.



By Electronista Staff
Post tools:

TAGS :

toggle

Comments

  1. chimaera

    Forum Regular

    Joined: 04-08-07

    I'd expect the FBI to look into this, whenever they can spare a moment from domestic terrorist hunts. The Secret Service investigates counterfeiting and provides presidential security. I'm pretty sure POS hacks do not threaten the President, or involve freshly-dried bills.

  1. climacs

    Dedicated MacNNer

    Joined: 09-06-01

    http://www.secretservice.gov/ectf.shtml


    "On October 26, 2001, President Bush signed into law H.R. 3162, the USA PATRIOT Act. The U.S. Secret Service was mandated by this Act to establish a nationwide network of Electronic Crimes Task Forces (ECTFs). The concept of the ECTF network is to bring together not only federal, state and local law enforcement, but also prosecutors, private industry and academia. The common purpose is the prevention, detection, mitigation and aggressive investigation of attacks on the nation's financial and critical infrastructures."

Login Here

Not a member of the MacNN forums? Register now for free.

toggle

Network Headlines

toggle

Most Popular

Sponsor

Recent Reviews

IDrive cloud backup and sync service

There are a lot of cloud services out there, and nearly all of them can be used for backing up key files and folders. A few dedicated ...

Asus Chromebook C300

When Chromebooks hit the market back in 2011, consumers didn't know what to do with them. The low-cost laptops, powered by Google's Ch ...

Plantronics BackBeat Pro Bluetooth headphones

Looking for a pair of headphones that can do everything a user requires is a task that can take some study. Trying to decide on in-ear ...

Sponsor

toggle

Most Commented

 
toggle

Popular News