Teen identified as malware author after Target, Neiman Marcus hacked
(Image source: CNN / Target)
By Marie-Louise Gumuchian, CNN
(CNN) -- A security firm has identified a teenager in Russia as the author of the malware used in the cyberattacks against Target and Neiman Marcus, and warned retailers to be prepared for more potential breaches.
Investigators have been probing the recent holiday season cyberattack where a massive breach at Target compromised credit card numbers and other personal information of 70 million customers.
In a statement published Friday, Security firm IntelCrawler said the breach was the result of malware that infected Target's system and possibly compromised the systems of other retailers. Neiman Marcus reported a similar security breach this month.
The malware, which IntelCrawler describes as an "off-the-shelf" product known as BlackPOS, was allegedly written by a 17-year-old with roots in St. Petersburg.
Experts say the teenager who made the malware shared it with others.
"Well, we should be worried. One of the things the hackers do is take the malware as it's called. Once it's identified, then the security community can rally around it and put controls in place. But the problem is, the hackers know that. And they manipulate or mutate this malware, and then reuse it," SecureState CEO Ken Stasiak said.
"We believe that he originated the code, or the malware everybody's calling it now. And was able to put it up on the Internet for download for other hackers to then take, and potentially use it for malicious harm. And that's what we believe happened to Target and Neiman Marcus."
The first sample of the malware was created in March and since then, more than 40 versions have been sold around the world, IntelCrawler said. It first infected retailers in Australia, Canada and the United States.
Andrew Komarov, IntelCrawler CEO, said most of the victims are department stores and said more BlackPOS infections as well as new breaches could appear soon. Retailers should be prepared.
"The numbers could be staggering, really, because what the retailers are looking at are potential class action lawsuits," CNN legal analyst Paul Callan said.
"Let's say hypothetically, a retailer has 40 million transactions by 40 million different customers. All 40 million may have been damaged in some way, and under law they can all be joined together in a class action lawsuit."
Thursday, August 28 2014 9:33 AM EDT2014-08-28 13:33:06 GMT
SPARTANBURG COUNT, SC (WYFF) - Fifteen children living in a double-wide trailer were put into protective custody and seven adults were arrested, according to the Spartanburg County Sheriff's Office. DeputiesMore >>
Fifteen children living in a double-wide trailer were put into protective custody and seven adults were arrested, according to the Spartanburg County Sheriff's Office.More >>
Friday, August 29 2014 10:31 PM EDT2014-08-30 02:31:36 GMT
The horrifying details of the capital murder of 5-year-old Janaya Thompson were presented to a judge Friday. A Gulfport detective talked about the evidence investigators have against Alberto Garcia.More >>
The horrifying details of the capital murder of 5-year-old Janaya Thompson were presented to a judge Friday. A Gulfport detective talked about the evidence investigators have against Alberto Garcia. During Friday's hearing, prosecutors revealed that DNA evidence found on Janaya's body has come back from the crime lab with a positive match for Garcia's DNA.More >>
Friday, August 29 2014 3:40 PM EDT2014-08-29 19:40:25 GMT
Officials continue to search for the man who beat and robbed a woman during a home invasion in Yazoo City on Monday night. According to her family, 85-year-old Jeanelle Fratesi answered her front doorMore >>
According to her family, 85-year-old Jeanelle Fratesi answered her front door for a person she thought needed help.
Friday, August 29 2014 3:15 PM EDT2014-08-29 19:15:59 GMT
A power outage has shut down a portion of downtown Jackson. Entergy Mississippi says that crews are on site working to restore power as quickly and safely as possible. Entergy's website shows that overMore >>
Entergy's website showed that over 400 people were without power in the downtown area on Friday.
Friday, August 29 2014 1:48 PM EDT2014-08-29 17:48:04 GMT
The Canton Public School District says that it is working diligently to contain the spread of scabies at several of its schools. The school district says they have informed parents that their childrenMore >>
The school district says they have informed parents that their children may have recently been exposed.