A cyber-intelligence firm thinks a Russian teenager could be behind the "malware" responsible for the data and security breach that affected Target Corp.
Marketwatch reports that Los Angeles based IntelCrawler believes the author, 17, is a well-known programmer of malicious code in the underground world.
According to Marketwatch, the Black POS malware is an "off the shelf" malware that also may have been involved in the Neiman Marcus attack and several other breaches that may soon be revealed.
IntelCrawler said the "malware" first infected point-of-sales environments in Australia, Canada, and the U.S.
The company's president, Dan Clements said, "He is still visible for us, but the real bad actors responsible for the past attacks on retailers such as Target and Neiman Marcus were just his customers."
The Minneapolis-St. Paul Business Journal reports investigators said they found Russian writing in some of the malicious software's code.
There could be more news on other data security breaches coming soon.
The U.S. Department of Homeland Security has gotten involved in the investigation of the Target breach. The government warned retailers the aggressive software that led to the breach at Target has likely infected other companies.
IntelCrawler CEO, Andrew Komarov said, "Most of the victims are department stores. More Black POS infections, as well as new breaches can appear very soon, retailers and the security community should be prepared for them."
The company has uncovered at least six ongoing attacks at U.S. merchants whose credit card systems are infected with the "malware," according to Reuters.
Reuters says Komarov has alerted law enforcement, Visa Inc, and several other large banks about its findings.
Credit card companies, banks and retailers, including Target have said that victims of any fraud resulting from the theft of their payment card data bear "zero liability" and will be credited for the purchases made on their accounts.