Thursday, April 19, 2012

No Reservations – Remote Access Trojan Pilfers Credit Cards from Hotels | Trusteer

smart engineering. hotel systems are notoriously insecure and wide open. i hope they shut this down with patches and updates to PoS systems quickly.

Trusteer

Our intelligence center researchers recently uncovered a fraud “package” being sold in underground forums that uses a remote access Trojan to steal credit card information from a hotel point of sale (PoS) application. This scheme, which is focused on the hospitality industry, illustrates how criminals are planting malware on enterprise machines to collect financial information instead of targeting end users devices.

In this particular scenario, a remote access Trojan program is used to infect hotel front desk computers. The malware is able to steal credit card and other customer information by capturing screenshots from the PoS application. According the seller, the Trojan is guaranteed not to be detected by anti-virus programs.

No reservations

This fraud package is being offered for $280. The purchase price includes instructions on how to set-up the Trojan. The sellers even offer advice on how to use telephone social engineering techniques via VoIP software to trick front desk managers into installing the Trojan.

To prove the effectiveness of the fraud package, the seller uses a screenshot (above) taken by the remote access Trojan from the PoS system at one of the world’s largest hotel chains. The screenshot shows the PoS application populated with customer information gathered at check-in.

As we have mentioned in recent posts, criminals are increasingly expanding the focus of their attacks from online banking targets to enterprises. One of the reasons for this shift is that enterprise devices can yield high value digital assets when compromised.

Thanks,
Tony Burkhart

The Mozilla project is a global community of people who believe that openness, innovation, and opportunity are key to the continued health of the Internet.

Posted via email from Tony Burkhart

Starting today, you can print to any FedEx Office® location in the US through Google Cloud Print.

that's pretty dang handy. I will be trying this out on my Nexus S 4G, which is now running ICS

Delivering Cloud Printing to More Places

Wednesday, April 18, 2012 | 10:00 AM

Have you ever needed to print something out in a pinch? Well, so have we, which is why we’ve been working hard to bring Google Cloud Print to even more places, making it easier to print when and where you need it the most.

Starting today, you can print to any FedEx Office® location in the US through Google Cloud Print. Simply choose “Print to FedEx Office” in the Cloud Print dialog, and you’ll receive a retrieval code that you can use at any FedEx Office® Print & Go self-service device at more than 1,800 FedEx Office stores across the nation. So if you're on a business trip to California, you can submit a report for your colleague in New York to print out at the neighborhood FedEx Office.


We’re also happy to add Canon to the list of companies offering printers that are Google Cloud Print Ready. Now you can choose from a variety of printers from Canon, Epson, Kodak and HP that make it easy to print from anywhere.

Finally, we’ve made it possible to send documents to your phone or tablet running Android 4.0, Ice Cream Sandwich through Google Cloud Print. Once you install Chrome for Android Beta and sign in, your Android device will appear as a destination in the Cloud Print dialog. After choosing your Android device, a PDF copy of your document will open in Chrome for Android Beta. Next time you need to print something to take on the go, save some paper and “print” it to your Android device instead!

Posted by Paolo Ferraris, Software Engineer and Printer Extraordinaire

Thanks,
Tony Burkhart

The Mozilla project is a global community of people who believe that openness, innovation, and opportunity are key to the continued health of the Internet.

Posted via email from Tony Burkhart