Browse Definitions:
Definition

Backoff

Contributor(s): Matthew Haughn

Backoff is point-of-sale malware that uses memory scraping  to steal credit card data from Windows-based retail machines on which it is installed.

Backoff is used by criminals to gather valuable track2 data from credit cards. Track 2 data is information contained in the card's magnetic stripe and accessed by credit card checkers and point-of-sale (POS) magnetic stripe readers. The information in track 2 includes the primary account number and encrypted personal identification number (PIN). That data is lucrative for cybercriminals because it can be used used to create cloned credit cards.

The malware is installed via hacked remote desktop-type applications that are often used to configure POS systems. Attackers gain entrance to these accounts by brute force attacks. Once installed, Backoff is hard to detect. The malware uses RAM scraping to find track 2 data as it is introduced to the system, while it has not yet been encrypted. The data is then sent to remote computers to be sold on underground websites.

Backoff capabilities include:

  • Scraping memory for track 2 data.
  • Logging keystrokes.
  • Command & control (C&C) communication.
  • Injecting malicious stub into explorer.exe.

United States Secret Service estimated that Backoff had affected over 1000 businesses. A variant of Backoff was used in a massive Target breach in late 2013, which compromised the data of 70 million individuals.

This was last updated in January 2015

Continue Reading About Backoff

Join the conversation

1 comment

Send me notifications when other members comment.

By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Please create a username to comment.

http://www.burgerspot.cz/2013/10/pan-hamburger-v-restauraci-square-unhost/
Cancel

-ADS BY GOOGLE

File Extensions and File Formats

Powered by:

SearchCompliance

SearchSecurity

  • copyright

    Copyright is a legal term describing ownership of control of the rights to the use and distribution of certain works of creative ...

  • keylogger (keystroke logger or system monitor)

    A keylogger, sometimes called a keystroke logger or system monitor, is a type of surveillance technology used to monitor and ...

  • password

    A password is an unspaced sequence of characters used to determine that a computer user requesting access to a computer system is...

SearchHealthIT

SearchDisasterRecovery

  • business continuity plan (BCP)

    A business continuity plan (BCP) is a document that consists of the critical information an organization needs to continue ...

  • call tree

    A call tree -- sometimes referred to as a phone tree -- is a telecommunications chain for notifying specific individuals of an ...

  • mass notification system (MNS)

    A mass notification system is a platform that sends one-way messages to inform employees and the public of an emergency.

SearchStorage

  • CompactFlash card (CF card)

    A CompactFlash card (CF card) is a memory card format developed by SanDisk in 1994 that uses flash memory technology to store ...

  • email archiving

    Email archiving (also spelled e-mail archiving) is a systematic approach to saving and protecting the data contained in email ...

  • RAID (redundant array of independent disks)

    RAID (redundant array of independent disks) is a way of storing the same data in different places on multiple hard disks to ...

SearchSolidStateStorage

  • M.2 SSD

    An M.2 SSD is a solid-state drive (SSD) that conforms to a computer industry specification written for internally mounted storage...

  • NVMe (non-volatile memory express)

    NVMe (non-volatile memory express) is a host controller interface and storage protocol to enable a solid-state drive to use the ...

  • SSD RAID (solid-state drive RAID)

    SSD RAID (solid-state drive RAID) is a methodology commonly used to protect data by distributing redundant data blocks across ...

SearchCloudStorage

  • RESTful API

    A RESTful application program interface breaks down a transaction to create a series of small modules, each of which addresses an...

  • cloud storage infrastructure

    Cloud storage infrastructure is the hardware and software framework that supports the computing requirements of a private or ...

  • Zadara VPSA and ZIOS

    Zadara Storage provides block, file or object storage with varying levels of compute and capacity through its ZIOS and VPSA ...

Close