Wednesday , 20 June 2018
Home » NEWS » TOP 10 STORIES » POS malware found on over 4000 ElasticSearch Servers

POS malware found on over 4000 ElasticSearch Servers

It has been reported that over 4,000 ElasticSearch servers were found hosting PoS (Point of Sale) malware strains. The infections detected data as far back as 2016, with the latest infections observed as recently as August 2017. Nearly 99% of the infected servers are hosted in Amazon Web Services (AWS), according to security experts. The two malware strains – AlinaPOS and JackPOS – are very popular among cybercriminals and have been around since 2012. However, Kromtech security researchers, who uncovered the two malware strains hosted on ElasticSearch servers, also discovered that the two strains are now up for sale on dark web hacking forums and are being actively distributed, despite having been initially released several years ago.

View Full Story


About Dean Alvarez

Dean is Features Editor at IT Security Guru. Aside from cyber security and all things tech, Dean's interests include wine tasting, roller blading and playing the oboe in his Christian rock band, Noughts & Crosses.

You can reach Dean via email -