Browse Definitions :
Definition

Backoff

Contributor(s): Matthew Haughn

Backoff is point-of-sale malware that uses memory scraping  to steal credit card data from Windows-based retail machines on which it is installed.

Backoff is used by criminals to gather valuable track2 data from credit cards. Track 2 data is information contained in the card's magnetic stripe and accessed by credit card checkers and point-of-sale (POS) magnetic stripe readers. The information in track 2 includes the primary account number and encrypted personal identification number (PIN). That data is lucrative for cybercriminals because it can be used used to create cloned credit cards.

The malware is installed via hacked remote desktop-type applications that are often used to configure POS systems. Attackers gain entrance to these accounts by brute force attacks. Once installed, Backoff is hard to detect. The malware uses RAM scraping to find track 2 data as it is introduced to the system, while it has not yet been encrypted. The data is then sent to remote computers to be sold on underground websites.

Backoff capabilities include:

  • Scraping memory for track 2 data.
  • Logging keystrokes.
  • Command & control (C&C) communication.
  • Injecting malicious stub into explorer.exe.

United States Secret Service estimated that Backoff had affected over 1000 businesses. A variant of Backoff was used in a massive Target breach in late 2013, which compromised the data of 70 million individuals.

This was last updated in January 2015

Continue Reading About Backoff

Join the conversation

1 comment

Send me notifications when other members comment.

Please create a username to comment.

http://www.burgerspot.cz/2013/10/pan-hamburger-v-restauraci-square-unhost/
Cancel

-ADS BY GOOGLE

File Extensions and File Formats

Powered by:

SearchCompliance

  • PCI DSS (Payment Card Industry Data Security Standard)

    The Payment Card Industry Data Security Standard (PCI DSS) is a widely accepted set of policies and procedures intended to ...

  • risk management

    Risk management is the process of identifying, assessing and controlling threats to an organization's capital and earnings.

  • compliance framework

    A compliance framework is a structured set of guidelines that details an organization's processes for maintaining accordance with...

SearchSecurity

  • Trojan horse (computing)

    In computing, a Trojan horse is a program downloaded and installed on a computer that appears harmless, but is, in fact, ...

  • identity theft

    Identity theft, also known as identity fraud, is a crime in which an imposter obtains key pieces of personally identifiable ...

  • DNS over HTTPS (DoH)

    DNS over HTTPS (DoH) is a relatively new protocol that encrypts domain name system traffic by passing DNS queries through a ...

SearchHealthIT

  • telemedicine (telehealth)

    Telemedicine is the remote delivery of healthcare services, such as health assessments or consultations, over the ...

  • Project Nightingale

    Project Nightingale is a controversial partnership between Google and Ascension, the second largest health system in the United ...

  • medical practice management (MPM) software

    Medical practice management (MPM) software is a collection of computerized services used by healthcare professionals and ...

SearchDisasterRecovery

SearchStorage

  • M.2 SSD

    An M.2 SSD is a solid-state drive (SSD) that conforms to a computer industry specification and is used in internally mounted ...

  • kilobyte (KB or Kbyte)

    A kilobyte (KB or Kbyte) is a unit of measurement for computer memory or data storage used by mathematics and computer science ...

  • virtual memory

    Virtual memory is a memory management capability of an operating system (OS) that uses hardware and software to allow a computer ...

Close