Fraudsters are using a revamped version of the Alina Trojan to target Windows-based point-of-sale devices to steal payment card data. The malware operators are using unsecured DNS protocols for communication between infected POS devices and their command-and-control server to exfiltrate the data. Stolen payment data is usually sold in underground criminal markets, the report says. Malware operators have updated their tactics, techniques and procedures to keep their code from being detected, the researchers say.”]
Source: https://www.govinfosecurity.com/pos-malware-using-dns-to-steal-payment-card-data-a-14551