N/APosted on - 12/25/2014
Backoff is the name of the malware that had hit retail chains like Target in the holiday season last year. Recent reports suggest the virus is back in action. What is the mode of operation of this software? How does it manifest itself in its victims? Is there a way this virus can be detected?
Is the Backoff virus back in action this year?
It enters into a system through remote desktop utilities to brute force and log in. E.g. Microsoft Remote Desktop, Pulseway and LogMEIn Join. Me etc. An agent is installed like a Trojan and monitoring of the system is started.
Credit card information must be encrypted to keep data secure at a system where such information is stored.
Semantics and other Antivirus with Intrusion Prevention System features can detect such type of activities.
Details about infection is available at https://www.symantec.com/connect/blogs/trojan-backoff-new-point-sale-threat-emerges