14 DAY TRIAL // South African banks have lost tens of millions of rand (millions of dollars) as a result of cybercriminal attacks targeting the point of sale (POS) devices of fast-food outlets.
Dexter is among the most well-known pieces of malware specifically designed to steal payment card information from point of sale devices. It appears that the cybercrooks have used it to steal information from the magnetic strips of the credit cards used in South African fast food establishments.
According to TechCentral, it’s uncertain how the malware got on the POS devices. However, a large number of fast-food outlets are impacted. Also, most of the country’s card-issuing financial institutions have suffered losses.
KFC is one of the chains that have been hit particularly hard by these cyberattacks. Interpol, Europol and South Africa’s Police Service (SAPS) are trying to crack down on those responsible. However, so far, no one has been arrested in South Africa in connection to these crimes.
Unusual levels of fraud activity were recorded by South African banks earlier this year. However, initially, the number of fraud cases was still low.
An investigation into these breaches is still ongoing. Experts have determined that the variant of the Dexter malware used in the attacks is designed to avoid being detected by antivirus solutions.
It’s believed the cybercriminal organization that’s behind this operation is based somewhere in Europe.
Security firm Foregenix has been contracted to develop AntiMalware software to clean up Dexter infections. After the software was distributed to fast-food chains, the number of infections quickly declined.
It’s worth noting that the Dexter malware only steals information recorded on the card’s magnetic strip. However, the magnetic strip doesn’t include the CVV numbers needed to make online transactions. This is why the crooks have to clone the cards and use them to make in-store purchases.
Authorities have found that some of these cloned cards were used to make in-store purchases in the United States. In the US, suspects have already been arrested.
Experts say the public shouldn’t be concerned since most of the POS devices have been cleaned up. Those who notice suspicious transactions on their credit statements are advised to contact the bank immediately.