Malware In Hilton Hotels Results in Card Details Being Stolen

How often do you use your card? When you pop down to the shop and breaking that ten-pound note will result in too many coins to carry back? How about when you’re buying things online? Finally, how many have used their cards to book hotels? If you’ve stayed at a Hilton hotel recently and used your card to pay at one of their Point of Sale (POS) terminals, you may want to double check your cards not got anything suspicious on it.

Hilton Hotels has stated they are investigating the possible security breach reported by Brian Krebs, an investigative journalist, who traced a collection of misused cards and found a common source in the till’s that are located in one of the many restaurants and gift shops located in Hilton Hotels  located in the US.

Sadly this is not the end of the story, the security alert that Visa released for this flaw was made in August, with the malware apparently being active between April and July this year. Given the number of hotels, and the ease at which people can pay for things using their cards, the number of potential cards that have been affected by this issue is surely only going to rise as more and more people become aware of it.

As with all cards, credit or debit alike, you should always keep an eye on it and raise any concerns regarding payments that you don’t recall making, or seem to be to companies you’ve never heard of, to your bank/building society.

Thank you the Register for the information.

Image courtesy of ITP.

HP Announces Three New Tablets Dedicated To Business Solutions

HP has just announced three new tablets, two of which consist of the ElitePad 1000 G2 and ProPad 600 G1, and another as a POS solution, the TX1 POS. Given the continuous rise of IT demands for flexibility, mobility and lightweight devices, it would make sense for HP to provide such solutions.

The HP ElitePad 1000 G2 has been presented at MWC where was dubbed as being the “total business solution”, having it set to be released in March for at a price tag of $739 / £444. It is said to be designed for flexibility, having full-sized HDMI ports suited for easily setting up presentations, as well as having it packed with accessories and features suited to replace a normal laptop. The key features of the tablet consist of having just 9.2 mm thickness, weighing in at just 1.5 pounds, all powered by a 64-bit Intel processor. Additional features consist of touch, voice or pen inputs, dual cameras perfect for video conferences and enterprise IT integration tools.

The HP ProPad 600 G1 is a light version of its ElitePad big brother and lacks its aluminium finish. A variety of accessories has been removed compared to the ElitePad, having just expandable storage ports and micro-HDMI support, all being powered by an Intel Atom processor. The lack of features and performance can be felt in its price, where HP will be selling it at a lower price tag. An official pricing has yet to be revealed for this particular tablet, although HP is said to be releasing it somewhere this April.

Moving to the HP TX1 POS, the tablet is designed to be a point-of-sale terminal which can either act as stationary or portable. The tablet is designed for small businesses tgat beed to connect to front and back office applications. To keep it simple, the TX1 POS Solution provided by HP is similar to the ProPad tablet, having it connect to POS accessories and ports. The TX1 POS is said to be available starting this May.

Thank you ZDNet for providing us with this information
Images courtesy of ZDNet

Diamond Display Their Latest Graphics Solutions At CES 2014

A brand that we’ve never really worked with in the past were at CES 2014, and after meeting with them, this should all change in the near future and that brand is Diamond. For those not in the know, they have a broad product range of networking products, but their bread and butter so to speak has always been graphics cards and after visiting their suite in the Mirage hotel, we got to see exactly what was on offer. This included the R7 240 and 250, as well as the R9 270X and 280X offerings from AMD.

Also in the mix was the BizView 750 card aimed at the business sector, offering some key features that AMD cater for, including Eyefinity but without the un-needed 3D performance that is’t required for a card catered for this market. Instead, this card is aimed at POS, digital signage and other similar functions. A good example is airports, travel agents and restaurants that could display their latest deals or flight times.

Other products that were on show included the MDS3900 dual head mini dock with Gigabit Ethernet which allows a digital display signal to be split for multiple outputs as well as including USB 3.0 and Gigabit functionality. Also on display was the BV550X4 quad output graphics card, which has an extremely small footprint working on a PCI-Express interface, but includes a single output connector with a 4-1 cable allowing 4 outputs to be displayed using the pre-supplied cable. This is a very cost effective way of displaying multiple screens from a single output and keeping costs and heat/noise to a minimum.

Would any of Diamond’s graphics card be something that you’d buy?

MSI Announces the MS-98D3 Ultra Low-Profile Embedded Board

A Mini-ITX embedded board has been  released by MSI, the leading brand of embedded computers, that focuses on advanced POS application. Powered by the 4th Gen Intel Core processor, MS-98D3 brings the POS system to a new level with the capability of multiple processing covering front-end retailing to back-end management at the same time, while keeps the system active and prompt at both ends. With increasing POS system connected to network, wireless, or cellular communication to form a networked or even cloud-based POS system, high-end POS host is required by the market. The MS-98D3 is an embedded board designed in response to this demand.

The fast growth of information technology and network communication has made POS even more demanding, and that’s where the MS-98D3 is a tailor-made solution for POS systems that require just that. It features the ultra low-profile thin Mini-ITX design and the powerful 4th Gen Intel processor. Complex tasks which include not only multiple ordering/payment data processing and printing, but also inventory management, sales analysis, CRM, financials, warehousing, and store management, can be done by the high-end POS hosts with MS-98D3. With this advanced POS board, true Point-of-Sale control from manufacturing/purchasing, logistics, to retailing is realized, and consequently the executive efficiency is enhanced.

The MS-98D3 support RJ11 cash drawer, 8 USB and 6 COM ports, with COM1-4 powered and selectable by BIOS instead of H/W jumper, allowing users to friendly configure the COM port power without removing the chassis. Moreover, the 2nd display of MS-98D3 can be connected to an extended monitor or play multimedia files as a local digital signage that shows advertising messages at the shop or restaurant. More features of MS-98D3 are waiting for you to experience.

Key features of the MS-98D3 motherboard and full specs can be found on MSI’s official website.

Thank you TechPowerUp for providing us with this information.

Image courtesy of Micro-Star Int’l Co., Ltd.

New Malware Targeting ATMs of Major U.S. Banks

A new malware called “Dump Memory Grabber” is found that has been collecting information about credit/debit card information from ATM and point-of-sale systems from major U.S. banks.

This malware is reported by a Russian-based security company called “Group IB” and it seems that the author who made this malware is affiliated with a Russian based cyber crime gang. The security company pointed out that the malware has already stolen multiple data of credit and debit cards from Major U.S. banks such as Chase, Capital One, Citibank and Union Bank of California. Currently Group IV has been working closely with VISA, U.S. banks and U.S. law enforcement agents by sharing its findings about the Dump Memory Grabber malware.

The “Dump Memory Grabber” malware collects and transfers Track 1 and Track 2 data which are encoded into the magnetic stripe of the credit/debit cards. These information includes first and last name, expiration and the bank account number. With this information, one can create a cloned physical debit card.

The malware is written using C++ without any additional libraries which adds itself to the system’s registry and runs automatically whenever the system is on. The malware then creates a txt file which contains memory dumps and stolen data, which is then transferred to a remote server via FTP. It was found that it is a Russian based as the IP address of the remote server originates from a Russian based ISP called “Selectel”, and it was associated with a domain name “CISLAB” which is a Russian company.

It was found that a Boston’s Blanchard’s Liquors also had their POS affected by a malware over the weekend and reports of some customers who have been charged for no reason. After notifying its other customers, they have taken down their credit card machines. Its not clear if they have been affected by the same malware.

Andrey Komarov, CTO of CERT-GIB who is affiliated with Group IB said pointed out they have also found one of the C&C (Command and Control) servers, but many POS and ATMS were infected, and the issue is currently under investigation.

Source: Security Week