Thursday, May 1, 2025
HomeCyber AttackAuthor Behind FastPOS Malware Pleads Guilty for Infecting PoS Systems Worldwide

Author Behind FastPOS Malware Pleads Guilty for Infecting PoS Systems Worldwide

Published on

SIEM as a Service

Follow Us on Google News

A 30-year-old Moldovan citizen Valerian Chiochiu (30), aka Onassis pleaded guilty for creating FastPOS malware and infecting several PoS Systems Worldwide.

The FastPOS malware was first spotted by Trend Micro, it was named as FastPOS because of it’s the ability to quickly exfiltrate the data.

The malware is so dangerous as it leverages various methods to attack and breach a POS system, the malware uses keylogger and RAM scraper to collect details such as payment details, and other data stored within the magnetic strips of credit and debit cards and other details of the company.

- Advertisement - Google News

FastPOS malware doesn’t store any information locally, as soon it steals the information it will be uploaded to a C&C server.

Malware Author Pleads Guilty

Chiochiu is a native of Moldova, resides in the U.S., to face up to 10 years of prison when he is sentenced on Dec. 11.

He was one of the members of the Infraud global cybercrime organization that steals and sells the credit card and personal data.

“His plea came just over a month after the co-founder and administrator of Infraud, Sergey Medvedev of Russia, separately pleaded guilty on June 26.”

According to the indictment, “the Infraud Organization was created in October 2010 by Medvedev and Svyatoslav Bondarenko, aka “Obnon,” “Rector,” and “Helkern,” 34, of Ukraine, to promote and grow interested in the Infraud Organization as the premier destination for “carding” —purchasing retail items with counterfeit or stolen credit card information — on the Internet.”

He went online with the name Onassis,” “Flagler,” “Socrate” and “Eclessiastes,” he was a member of the in fraud organization since 2012.

He guides them in fraud organization members on the development, deployment, and use of malware as a means of harvesting stolen data.

The group was dismantled by US authorities in February 2018, In its seven-year history, the Infraud Organization caused more than $568 losses.

You can follow us on LinkedinTwitterFacebook for daily Cybersecurity and hacking news updates.

Gurubaran
Gurubaran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Latest articles

Trellix Launches Phishing Simulator to Help Organizations Detect and Prevent Attacks

Trellix, a leader in cybersecurity solutions, has unveiled its latest innovation, the Trellix Phishing...

AiTM Phishing Kits Bypass MFA by Hijacking Credentials and Session Tokens

Darktrace's Security Operations Center (SOC) in late 2024 and early 2025, cybercriminals have been...

Nitrogen Ransomware Uses Cobalt Strike and Log Wiping in Targeted Attacks on Organizations

Threat actors have leveraged the Nitrogen ransomware campaign to target organizations through deceptive malvertising...

Researchers Reveal Threat Actor TTP Patterns and DNS Abuse in Investment Scams

Cybersecurity researchers have uncovered the intricate tactics, techniques, and procedures (TTPs) employed by threat...

Resilience at Scale

Why Application Security is Non-Negotiable

The resilience of your digital infrastructure directly impacts your ability to scale. And yet, application security remains a critical weak link for most organizations.

Application Security is no longer just a defensive play—it’s the cornerstone of cyber resilience and sustainable growth. In this webinar, Karthik Krishnamoorthy (CTO of Indusface) and Phani Deepak Akella (VP of Marketing – Indusface), will share how AI-powered application security can help organizations build resilience by

Discussion points


Protecting at internet scale using AI and behavioral-based DDoS & bot mitigation.
Autonomously discovering external assets and remediating vulnerabilities within 72 hours, enabling secure, confident scaling.
Ensuring 100% application availability through platforms architected for failure resilience.
Eliminating silos with real-time correlation between attack surface and active threats for rapid, accurate mitigation

More like this

AiTM Phishing Kits Bypass MFA by Hijacking Credentials and Session Tokens

Darktrace's Security Operations Center (SOC) in late 2024 and early 2025, cybercriminals have been...

Nitrogen Ransomware Uses Cobalt Strike and Log Wiping in Targeted Attacks on Organizations

Threat actors have leveraged the Nitrogen ransomware campaign to target organizations through deceptive malvertising...

Researchers Reveal Threat Actor TTP Patterns and DNS Abuse in Investment Scams

Cybersecurity researchers have uncovered the intricate tactics, techniques, and procedures (TTPs) employed by threat...