Author of BlackPOS malware used in Target, Neiman Marcus attacks is 17 year Russian

Discussion in 'Forum for discussion of ANTICHAT' started by K800, 18 Jan 2014.

  1. K800

    K800 Nobody's Fool

    Joined:
    25 Dec 2010
    Messages:
    2,191
    Likes Received:
    3,828
    Reputations:
    372
    An "off the shelf" malware known as BlackPOS was used to facilitate the massive data breach that Target suffered during the peak holiday shopping time. This malware may also be responsible for the recent Neiman Marcus attack.
    _________________________________________________
    _________________________________________________​

    According to operative information from IntelCrawlerg, the person behind the nickname "ree[4]" is Sergey Taraspov, having roots in St.Petersburg and Nizhniy Novgorod (Russian Federation), very well known programmer of malicious code in the underground world of hacking.

    [​IMG]

    Security researchers from IntelCrawler, announced in a press release that the age of the BlackPOS malware author is close to 17 years old and the first sample of it was created in March 2013. The first report on this malware was done in the beginning of spring by Andrew Komarov, IntelCrawler CEO, when he was working in another forensics company.

    According to sources of IntelCrawler the first infected Point-of-Sales environments by BlackPOS were in Australia, Canada and the US. The first name of the malware was a lyric "Kaptoxa" ("potatoe" - in russian slang), which then was renamed to "DUMP MEMORY GRABBER by Ree[4]" for forums postings, but the title for C&C had string "BlackPOS". During that time, "Ree[4]" ("ree4") has sold more then 40 builds of BlackPOS to cybercriminals from Eastern Europe and other countries, including the owners of underground credit cards shops such as ".rescator", "Track2.name", "Privateservices.biz" and many others.

    The same dates the detailed information and reverse engineering report were shared with Visa and several major US banks, after which US LEA released internal notification for financial industry about that. The bad actor was pretty opened for trading this malware for 2 000 USD or by receiving 50% from selling of all intercepted credit cards by his customer through Liberty Reserve.

    "He is still visible for us, but the real bad actors responsible for the past attacks on retailers such as Target and Neiman Marcus were just his customers", comments Dan Clements, IntelCrawler President.

    17.01.2014
    http://www.majorgeeks.com/news/story/author_of_blackpos_malware_used_in_targetneiman_marcus_attacks_is_17_year_old_russian.html
    http://intelcrawler.com/about/press08
     
    #1 K800, 18 Jan 2014
    Last edited: 20 Jan 2014
(You must log in or sign up to post here.)
Language
English (US)
    ANTICHAT ™ © 2001-2027 Antichat Kft.