April 26, 2024
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Rewterz Threat Alert – Turkish tricks with worms, RATs
December 19, 2019Rewterz Threat Alert – Rancor Group New Custom Malware to Attack Southeast Asia
December 19, 2019Rewterz Threat Alert – Turkish tricks with worms, RATs
December 19, 2019Rewterz Threat Alert – Rancor Group New Custom Malware to Attack Southeast Asia
December 19, 2019
Severity
Medium
Analysis Summary
Visa Payment Fraud Disruption (PFD) identified three unique attacks targeting merchant point-of-sale (POS) systems that were likely carried out by sophisticated cybercrime groups. Two of the attacks targeted the POS systems of North American fuel dispenser merchants. PFD recently reported on the observed increase of POS attacks against fuel dispenser merchants.
Impact
- Exposure of sensitive information
- Financial loss
Indicators of Compromise
MD5
- 19d38325f715f623bd4b6e819a150cde
- 5d4b9106c9911854b59c8891b40f29c0
- ede53b0ce6f3f3410b9f9595923fa2d4
- 30c23ec53a3443b6d53a6c8ad29cbcc8
SHA-256
- cc5b3904458b144c5f263f47a3dffc9628ecdccab993bf7e01d345f496692c1a
- 3a934f3cea6f9aff894eafd6e25ed01a93ef7dc4f7a16e2ade2da9f12060908f
- a7e41affb12e8e5c5e54cf9eb73104fb2069fb020eb2bf741f646f32b04d803a
- 431f83b1af8ab7754615adaef11f1d10201edfef4fc525811c2fcda7605b5f2e
SHA1
- 15f34ce2e4a9c8bbeb6fa243d70d587f7a627ece
- 3187aa12119ef31d2f1e03af0adf5d9a9e3c45fd
- b038e0518162881af4c2584d8b4967e85bad3a77
- 0b18ea041f8b467158b96ab8c655e97329b95a45
Remediation
- Block all threat indicators at your respective controls.
- Always be suspicious about emails sent by unknown senders.
- Never click on the links/attachments sent by unknown senders.