1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Stealthy malware Skimer helps hackers easily steal cash from ATMs

Discussion in 'CSO' started by RSS, May 17, 2016.

  1. RSS

    RSS New Member Member

    Security researchers have found a new version of a malware program called Skimer that's designed to infect Windows-based ATMs and can be used to steal money and payment card details.

    Skimer was initially discovered seven years ago, but it is still actively used by cybercriminals and has evolved over time. The latest modification, found by researchers from Kaspersky Lab at the beginning of May, uses new techniques to evade detection.

    Upon installation, the malware checks if the file system is FAT32 or NTFS. If it's FAT32 it drops a malicious executable file in the C:\Windows\System32 directory, but if it's NTFS, it will write the file in the NTFS data stream corresponding to Microsoft's Extension for Financial Services (XFS) service.

    To read this article in full or to leave a comment, please click here

    Continue reading...

Share This Page