ModPOS is a new, very advanced malware framework targeting point-of-sale (POS) systems. Its name comes from the fact that it has a modular architecture, which uses packed kernel drivers that are challenging to detect. The modules that researchers have currently discovered include one for downloading additional components and uploading information, one for memory scraping and one for keylogging, the downloading/uploading one being the only one with anti-virus detections.
↧