Lumension® Endpoint Intelligence Center

Intelligence Center » News Archive » New "LusyPOS" malware uses Tor for C&C Communications

New "LusyPOS" malware uses Tor for C&C Communications


Securityweek - (International) CBTS researchers analyzed a new variant of malware dubbed LusyPOS that leverages the Tor network to deploy a technique known as RAM scraping to collect payment card data from infected systems. The malware is similar to the ChewBacca variant which was used to steal payment data from several dozen retailers in the U.S. and other countries.


Note: This news synopsis is taken from the DHS Daily Open Source Infrastructure Report, a daily [Monday through Friday, except US Federal holidays] summary of open-source published information concerning significant critical infrastructure issues; a 10-day archive of the DOSIR can be found at:

Last Updated: 27 May 2016 10:22:39