Hackers have stolen customer credit card information from an unknown number of Arby’s restaurants. According to cyber-security reports, the fast food chain discovered in mid-January that it suffered a data breach that affected a number of Arby’s corporate restaurants.
The data breach affected some of Arby’s roughly 1,000 corporate restaurants, and none of its franchise restaurants operated by third parties, the report said. Over 350,000 credit and debit card accounts may have been impacted by the hack. Arby’s said that its customers should check their credit card statements for any unauthorized payments.
References: Arby’s Warns It Has Suffered a Massive Security Breach | Hackers Stole Credit Card Information From Thousands of Arby’s Customers | Arby's Hit with POS Breach, 1,100 Stores Possibly Affected
Computer experts detected a new dangerous malware threat known as the AthenaGo Remote Access Trojan (RAT). This is a virus that targets mainly Microsoft Windows users and it uses the Tor2Web service which acts a proxy connection to the C&C servers available on the TOR anonymous network.
AthenaGo RAT also features the capability to download and run additional binaries on infected systems when instructed to do so by an attacker. The malware was written using the Go programming language. Windows-based malware written in Go is not commonly seen in the wild. Additionally, the command and control (C2) communications used by the malware made use of Tor2Web proxies, which is part of a trend of increased reliance on these proxying services by various malware authors.
*IP addresses provided by Recorded Future.
Want to learn about Alert Logic products in more detail? Call us direct at +1.877.484.8383, for the UK call +44 (0) 203 011 5533, or complete this form. An Alert Logic representative will contact you soon.