The malware named vSkimmer can detect the card readers, grab all the information from the Windows machines attached to these readers, and send that data to a control server.
The malware has capabilities similar to Dexter but has certain additional functions as well.
Botnet like Zeus and SpyEye can perform financial fraud using extremely sophisticated techniques including intercepting the victims’ banking transactions. Vskimmer, on the other hand, directly targets card-payment terminals running Windows.
This malware uses a standard installation mechanism and copies itself as svchost.exe into %APPDATA%, modifies the registry key to add itself under the authorised list of apps, and runs ShellExecute to launch the process.
In a computer is not connected to the Internet, the malware would wait till a USB device is connected to the infected machine and would copy the card info collected from the victim to the USB device.
vSkimmer can also grab the Track 2 data stored on the magnetic strip of the credit cards. This track stores all the card information including the card number.