silversurfer
Level 85
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Malware Hunter
Well-known
- Aug 17, 2014
- 10,057
Read more below:Security researchers have discovered a new malware geared with modules that target Oracle Micros Hospitality RES 3700 point-of-sale systems, one of the most widely used management software in the hospitality industry.
Named ModPipe, the malware is a modular backdoor that can steal the passwords for the PoS system databases by decrypting them from Windows registry values.
Researchers at ESET found some basic ModPipe components at the end of 2019. In April 2020, they discovered in the wild three downloadable modules:
- GetMicInfo - steals database passwords, settings, and various data
- ModScan - runs scans on specified IP addresses
- ProcList - enumerates running processes and their modules
ModPipe malware decrypts Oracle point-of-sale database passwords
Security researchers have discovered a new malware geared with modules that target Oracle Micros Hospitality RES 3700 point-of-sale systems, one of the most widely used management software in the hospitality industry.
www.bleepingcomputer.com
Full report by researchers from ESET:
Hungry for data, ModPipe backdoor hits POS software used in hospitality sector
ESET researchers uncover ModPipe, a modular backdoor that targets POS software used by thousands of restaurants and hotels worldwide.
www.welivesecurity.com