Point-of-Sale malwares / RAM scrapers

Forum for analysis and discussion about malware.
Post Reply
benkow_
Posts: 74
Joined: Sat Jan 24, 2015 12:14 pm

Re: Point-of-Sale malwares / RAM scrapers

Post by benkow_ » Mon Oct 24, 2016 8:25 am

p1nk wrote:Looks like they didn't learn to properly handle user input:

Code: Select all

  // Create query
  $q = "SELECT * FROM `dbUsers` WHERE `username`='".$_POST["username"]."' AND `password`='".$_POST["password"]."' LIMIT 1";
  // Run query
  $r = mysql_query($q);
If it were only this problem.... ^^
Top
bsteo
Posts: 84
Joined: Fri Nov 16, 2012 5:50 pm

Re: Point-of-Sale malwares / RAM scrapers

Post by bsteo » Thu Nov 10, 2016 11:15 am

No PDO in XXI century? :)
Top
User avatar
TETYYSs
Posts: 99
Joined: Fri Jun 28, 2013 6:51 pm

Re: Point-of-Sale malwares / RAM scrapers

Post by TETYYSs » Thu Nov 10, 2016 6:25 pm

bsteo wrote:No PDO in XXI century? :)
shh, dont give them ideas
Top
Silence_is_best
Posts: 7
Joined: Fri Aug 15, 2014 11:16 am

Re: Point-of-Sale malwares / RAM scrapers

Post by Silence_is_best » Mon Mar 20, 2017 1:35 am

MajikPOS:

Via:
http://blog.trendmicro.com/trendlabs-se ... -and-rats/

VT links:
https://www.virustotal.com/en/file/4bbc ... /analysis/
https://www.virustotal.com/en/file/25e4 ... /analysis/

pass is infected
You do not have the required permissions to view the files attached to this post.
Top
tildedennis
Posts: 32
Joined: Mon Jun 17, 2013 7:57 pm

Re: Point-of-Sale malwares / RAM scrapers

Post by tildedennis » Sun Oct 22, 2017 10:17 pm

LockPoS

https://www.arbornetworks.com/blog/aser ... ins-flock/

I haven't seen much more of this in the wild.
You do not have the required permissions to view the files attached to this post.
Top
Post Reply

Return to “Malware”