"Prilex POS Malware Evolves to Block Contactless Payments to Steal from NFC Cards"

The Brazilian threat actors behind Prilex, a sophisticated and modular point-of-sale (POS) malware, have reemerged with new updates that enable it to prevent contactless payment transactions. Researchers identified three variants of Prilex that can target NFC-enabled credit cards. Since 2014, the threat actor has constantly added new features designed to support credit card theft, such as the GHOST transactions approach. The main purpose of the new functionality is to disable the contactless payment feature so that the user must insert their card into the PIN pad. The most recent version of Prilex, discovered in November 2022, was found to use rule-based logic to assess whether or not to collect credit card information, as well as an option to block NFC-based transactions. This article continues to discuss the new version of Prilex POS malware capable of blocking contactless payments to steal from NFC cards.

THN reports "Prilex POS Malware Evolves to Block Contactless Payments to Steal from NFC Cards"