This week the PCI Security Standards Council (PCI SSC) issued a bulletin urging organisations to take immediate action in relation to a Point of Sale (PoS) malware dubbed ‘Backoff’. The news was initially released by the United States Secret Service and Department of Homeland Security, which warned that ‘a particular family of malware [that] was detected in October 2013 and was not recognised by software solutions until August 2014 has likely infected many victims who are aware that they have been compromised’.
The malware may have infected systems in over 1,000 organisations, making it a very real threat to the security of cardholder data in all organisations.
In its bulletin, the PCI SSC recommends the following immediate actions:
- Contact your provider of antivirus solutions and ensure you have the most recent and up to date version of antivirus software that will detect ‘Backoff’ and other similar malware.
- Run this solution immediately.
- Review all system logs for any strange or unexplained activity, especially large data files being sent to unknown locations.
- Require all default and staff passwords on systems and applications to be updated. Provide good guidance on choosing a secure password (see PCI Data Security Standard Requirements 2, 8).
Finally, the bulletin states that ‘should systems be found to be infected or unusual activity suspected, organisations should contact their acquiring bank immediately’.
Read the full PCI SSC bulletin here: www.pcisecuritystandards.org/pdfs/140827_PCI_SSC_Statement_on_Malware_Related_to_Recent_Breach_Incidents.pdf
For more information on PCI DSS compliance, visit: www.itgovernanceusa.com/pci_dss.aspx