VERY IMPORTANT

Just in time for the holidays, a brand new Point Of Sale (POS) malware family has been discovered. Morphick responded to a Kronos phishing campaign that involved a document with a malicious macro that downloaded the Kronos banking malware. When running, the Kronos payload will download several other pieces of malware, but the one that caught our eye is a new credit card dumper with very low detection. Morphick is tracking this malware under the name ScanPOS due to the build string present in the malware.