Two coders closely tied to Target-related malware

[InfoSec News <alerts () infosecnews org>]

http://www.computerworld.com/s/article/9245568/Two_coders_closely_tied_to_Target_related_malware

By Jeremy Kirk
IDG News Service
January 20, 2014

A Los Angeles security company has named a second individual living in 
Eastern Europe whom they suspect coded malicious software that was 
modified and used against Target.

The information comes from an analysis of "cyberprints," or a collection 
of data and postings on underground password-protected forums where stolen 
card data and malware are sold, said Dan Clements, IntelCrawler's 
president, in a phone interview Monday.

IntelCrawler named a 17-year-old Russian teenager on Friday it suspects 
created the Kaptoxa malware, also known as BlackPOS, which intercepts 
unencrypted payment card details just after a card is swiped at a 
point-of-sale terminal.

On Monday, it revised the post and named a second individual. Clements 
said the revised post reflects new information that indicates the two 
individuals used the same nickname, "ree4," in forum postings dating back 
to March 2013.

[...]



--
Subscribe to InfoSec News
http://www.infosecnews.org/subscribe-to-infosec-news/