Arbor security researchers have noticed a rise in attacks using the banking malware Flokibot which were originally aimed at U.S., Canadian and Brazilian banks, and insurance firms.
Floki Bot, which uses code from the once notorious Zeus banking Trojan, has evolved and unlike its predecessor, is targeting point-of-sale systems via aggressive spear phishing campaigns and the RIG exploit kit.
This banking malware is being sold on several “Dark Web” sites as a way to grab point-of-sale (POS) data from unsuspecting retailers and consumers are the victims. Many Citibank Australia customers have had their cards cancelled as they were used in compromised PoS terminals.
For technical insight visit the Curt Wilson blog: https://www.arbornetworks.com/blog/asert/flokibot-invades-pos-trouble-brazil/
