Lumension® Endpoint Intelligence Center

Intelligence Center » News Archive » Researchers spot 64-bit version of NewPosThings trojan

Researchers spot 64-bit version of NewPosThings trojan


Securityweek - (International) Security researchers at Trend Micro identified a new 64-bit version of the NewPosThings point-of-sale (PoS) malware that infects systems by collecting passwords for virtual network computing (VNC) software and disabling operating system security warnings for certain file extensions, and collects user inputs and payment card information via memory scraping. Experts discovered command and control (C&C) servers used by the trojan associated with internet protocol (IP) addresses at two U.S. airports.


Note: This news synopsis is taken from the DHS Daily Open Source Infrastructure Report, a daily [Monday through Friday, except US Federal holidays] summary of open-source published information concerning significant critical infrastructure issues; a 10-day archive of the DOSIR can be found at:

Last Updated: 27 May 2016 10:23:55