Secret Service: “1,000+ Businesses Unaware They’ve Been Compromised by Backoff Malware”

Last week the Department of Homeland Security released an infection assessment to businesses throughout the country regarding the malware that has recently been found in the Supervalue and UPS breaches. The Backoff malware isn’t new, we’ve been seeing it pop up since October 2013 and has been operating since as recently as last month. Recently, investigators determined that hackers have been targeting businesses that use remote desktop applications, and seven POS system providers/vendors have announced they have uncovered multiple breaches through their clients.

In fact, the Secret Service is now reporting that over 1,000 US businesses are infected with Backoff malware and don’t yet realize it.

The Department of Homeland Security recommends businesses of all sizes actively contact their IT team, antivirus vendor, managed service provider, and/or POS system vendor to assess whether their assets may be vulnerable and/or compromised. If you believe you may be infected with Backoff malware, companies are urged to contact their local Secret Service field office or the National Cybersecurity and Communications Integration Center (NCCIC) for more information. You can also read more about Backoff malware here.

As providers of payment security solutions for some of the nation’s largest corporations, CardConnect also advises that companies look into transitioning to malware-resistant POS devices utilizing P2PE.

Have questions about “Backoff” malware? Wondering what P2PE can do to protect your business? Drop us a line and we’ll be in touch.