Lumension® Endpoint Intelligence Center

Intelligence Center » News Archive » New point-of-sale malware "Backoff" scrapes RAM for card data

New point-of-sale malware "Backoff" scrapes RAM for card data


Softpedia - (International) The U.S. Computer Emergency Response Team (US CERT) published an advisory warning of a new family of malware known as "Backoff" that can compromise point-of-sale (PoS) systems by compromising remote desktop applications and then performing memory scraping to obtain payment card track data. The malware currently has very low rates of detection in most antivirus engines and contains various other capabilities including keystroke logging and injecting a malicious stub into explorer.exe to increase persistency.


Note: This news synopsis is taken from the DHS Daily Open Source Infrastructure Report, a daily [Monday through Friday, except US Federal holidays] summary of open-source published information concerning significant critical infrastructure issues; a 10-day archive of the DOSIR can be found at:

Last Updated: 27 May 2016 10:21:11