The ‘Backoff’ malware linked to data breaches is spreading
The number of computers in North America infected by the Backoff malware, which is blamed for a string of payment card breaches, has risen sharply, according to research from network security company Damballa.
The company detected a 57 percent increase between August and September in devices infected with Backoff, which scrapes a computer’s RAM for leftover credit card data after a payment card has been swiped, said Brian Foster, Damballa’s CTO.
Damballa based its finding on data it collects from its ISP and enterprise customers, who use its traffic analysis products to detect malicious activity.
Damballa sees about 55 percent of internet traffic from North America, including DNS requests, though for privacy reasons it doesn’t know the IP addresses of most of those computers, Foster said.