FireEye researchers shed more light on infamous cybercriminals associated with RawPOS malware. and christen it ‘FIN5.’
Kelly Jackson Higgins
FIREEYE CYBER DEFENSE SUMMIT — Washington, D.C. — No 0days. No spearphishing, either: The cybercriminal group tied to numerous payment card breaches including Goodwill and best known by its so-called “RawPOS” malware employed legitimate user credentials to access its targets’ networks.
Researchers at FireEye here today shared their recent findings on this prolific and long-running cybercrime gang that has been the subject of multiple Visa security alerts to merchants. The RawPOS memory scraper malware has been infecting the lodging industry in epidemic proportions over the past year, and is considered one of the first memory scrapers to target point-of-sale systems.
To read the entire article, please click here.