Ransomware's New Trick: Hitting PoS Terminals

New tricks. More attacks.

If you've ever worked in hospitality or retail, you've dealt with a Point of Sale (PoS) terminal. Those devices contain lots of customer credit card data and are now under attack.

This marks the latest improvement from the Sodinokibi Ransomware team (aka REvil).

"The scanning of victim systems for PoS software is interesting, as this is not typically something you see happening alongside targeted ransomware attacks."

Much of this may be driven by the cybercriminals' desire to bounce back from Coronavirus losses (like here). They've shown creativity as they continue expanding attacks.

"One thing that is clear is the actors using Sodinokibi are sophisticated and skilled and show no sign that their activity is likely to decrease any time soon."

Like Sodinokibi, Maze Ransomware team is another group wreaking havoc on victims. Maze has even created a cybercrime cartel. In recent months, these groups started stealing data before launching Ransomware (like here). Then, they release the data if the victim doesn't pay up (like here).

It's time to protect your team and your assets from these attacks.

Are you ready to take action?
You already have a lot on your plate, so we make it easy. Find out how to protect your team with INFIMA's Automated Security Awareness platform.

To get a quote, set up a call with our (non-pushy) team here!

Original article here.
[https://www.zdnet.com/article/this-ransomware-has-learned-a-new-trick-scanning-for-point-of-sales-devices/]