This article needs additional citations for verification. Please help improve this article by adding citations to reliable sources. Unsourced material may be challenged and removed. Find sources: "Memory-scraping malware" – news · newspapers · books · scholar · JSTOR (June 2016) (Learn how and when to remove this message) |
Memory-scraping malware or RAM Scrapping malware is a malware that scans the memory of digital devices, notably point-of-sale (POS) systems, to collect sensitive personal information, such as credit card numbers and personal identification numbers (PIN) for the purpose of exploitation.[1]
Operation
[edit]The magnetic stripe of payment cards hold three different data tracks – Track 1, Track 2 and Track 3.[2] The POS RAM scrapers were created to implement the use of expression matches to gain access and collect the Track 1 and Track 2 card data from the RAM process memory. Some RAM scrapers use the Luhn algorithm to check the validity of card data before exfiltration.[3]
See also
[edit]References
[edit]- ^ "Memory Scraping Malware". Retrieved 2015-02-12.
- ^ "POS RAM Scraper Malware". Retrieved 2015-11-18.
- ^ "Exfiltration of Data with POS RAM Scraper Malware" (PDF). Retrieved November 29, 2017.
