Memory-scraping malware

Memory-scraping malware or RAM Scrapping malware is a malware that scans the memory of digital devices, notably point-of-sale (POS) systems, to collect sensitive personal information, such as credit card numbers and personal identification numbers (PIN) for the purpose of exploitation.[1]

Operation

The magnetic stripe of payment cards hold three different data tracks – Track 1, Track 2 and Track 3.[2] The POS RAM scrapers were created to implement the use of expression matches to gain access and collect the Track 1 and Track 2 card data from the RAM process memory. Some RAM scrapers use the Luhn algorithm to check the validity of card data before exfiltration.[3]

gollark: We need to combine both computer science *and* actual practical stuff, to avoid Electron and also avoid ridiculous weird type insanity.

gollark: Just use a different library for some incredibly obscure archive format nobody can use.

gollark: Ghosts?

gollark: It might be a not-actually-backward-compatible update.

gollark: Perhaps you are forgetting to close the stream or something.

References

"Memory Scraping Malware". Retrieved 2015-02-12.
"POS RAM Scraper Malware". Retrieved 2015-11-18.
"Exfiltration of Data with POS RAM Scraper Malware" (PDF). Retrieved November 29, 2017.

This article is issued from Wikipedia. The text is licensed under Creative Commons - Attribution - Sharealike. Additional terms may apply for the media files.

[1] "Memory Scraping Malware". Retrieved 2015-02-12.

[2] "POS RAM Scraper Malware". Retrieved 2015-11-18.

[3] "Exfiltration of Data with POS RAM Scraper Malware" (PDF). Retrieved November 29, 2017.

Memory-scraping malware

Operation

See also

References