Memory-scraping malware
{{Short description|Computer's memory scrapping malware}}
{{refimprove|date=June 2016}}
Memory-scraping malware or RAM Scrapping malware is a malware that scans the memory of digital devices, notably point-of-sale (POS) systems, to collect sensitive personal information, such as credit card numbers and personal identification numbers (PIN) for the purpose of exploitation.{{cite web |url=http://searchsecurity.techtarget.com/definition/memory-scraping-malware |title= Memory Scraping Malware |accessdate=2015-02-12}}
Operation
The magnetic stripe of payment cards hold three different data tracks{{snd}}Track 1, Track 2 and Track 3.{{cite web |url= https://support.authorize.net/authkb/index?page=content&id=A755 |title= POS RAM Scraper Malware |accessdate=2015-11-18}}
The POS RAM scrapers were created to implement the use of expression matches to gain access and collect the Track 1 and Track 2 card data from the RAM process memory. Some RAM scrapers use the Luhn algorithm to check the validity of card data before exfiltration.{{cite web |url= http://www.trendmicro.com/cloud-content/us/pdfs/security-intelligence/white-papers/wp-pos-ram-scraper-malware.pdf |title= Exfiltration of Data with POS RAM Scraper Malware |accessdate= November 29, 2017}}