03 September 2015

Botnet takes advantage of weak passwords to hack POS systems

10 July 2014  |  5832 views  |  0 Spiders computer virus

Security firm FireEye says it has discovered a botnet that is sniffing out point-of-sale systems and using brute force techniques to hack them and steal card data.

The BrutPOS botnet, comprising more than 5000 machines, scans specified IP address ranges for remote desktop protocol (RDP) servers that have weak or default passwords in an effort to locate vulnerable POS systems.

In a blog post, FireEye says that it found five command and control servers used by the botnet, two of which were still active and gave the firm some insight into the scam.

During a two week period, crooks managed to access 60 POS systems, working their way in by taking advantage of poor usernames such as 'administrator' and passwords like 'pos' and Password1'.

Warns FireEye: "While new malware and more advanced attacks are taking place, standard attacks against weak passwords for remote administration tools presents a significant threat."

KeywordsEFTPOS

Comments: (0)

Comment on this story (membership required)
Log in to receive notifications when someone posts a comment

Finextra news in your inbox

For Finextra's free daily newsletter, breaking news flashes and weekly jobs board, sign up now.

Related blogs

Create a blog about this story (membership required)

Related stories

02 June, 2014
15 May, 2014
16 April, 2014
14 January, 2014
26 March, 2012
Your browser is unable to support Flash files.


Top topics

Most viewed Most shared
Third of Brits expect day-to-day mobile pa...
8265 views comments | 38 tweets | 15 linkedin
Payments UK sets out vision for 'world cla...
6808 views comments | 17 tweets | 10 linkedin
Swedish mPOS firm iZettle raises EUR60m fo...
6152 views comments | 13 tweets | 8 linkedin
HSBC glitch leaves thousands of customers...
6076 views comments | 13 tweets | 7 linkedin
UK boosts contactless limit to £30
5557 views comments | 31 tweets | 20 linkedin

Featured job

Basic £90-110K OTE circa £200K NO CEILING
London based with substantial travel in Scandinavia

Find your next job