VERY IMPORTANT

ESET researchers have discovered a sophisticated backdoor that allows attackers to access sensitive data stored in systems used in the hospitality sector, such as the RES 3700 POS management software, which is used by hundreds of thousands of hotels and restaurants worldwide. What makes the backdoor distinctive are its downloadable modules and their capabilities. One of them – named GetMicInfo – contains an algorithm designed to gather database passwords by decrypting them from Windows registry values. This shows that the backdoor’s authors have deep knowledge of the targeted software and opted for this sophisticated method instead of collecting the data via a simpler yet “louder” approach, such as keylogging.