Security researchers from Trusteer have shared details on a recently discovered Remote Access Trojan (RAT) attack designed to steal credit card details from hotel point of sale computer systems.
Targeting the hospitality industry has its benefits, as a successful infection could yield information on many individuals, making it much more lucrative for the attackers over a typical infection of a personal system, which Trusteer says typically exposes 1-2 accounts.
The malware is much different than popular data-stealing attacks such as Zeus, which logs keystrokes and account information and sends it back to a command and control system. In this case, the malware steals credit card and other customer information by capturing screenshots from the hotel application.
According to Trusteer, the malware is being sold in underground forums for a list price of $280, and is not currently detected by anti-virus programs. Included with the purchase is support, including how to set-up the data-stealing Trojan and advice on how to convince front desk staff to install the malware via social engineering.
