Threat actor groups like FIN7 and FIN8 target financial institutions and merchants to steal customer information using point-of-sale malware. This session will map out the characteristics of such groups from how they target their victims using phishing campaigns to the unique indicators of the malware infections themselves. Participants will learn the differences between the major threat actor groups associated with such malware and how they can share information which can help other merchants and law enforcement investigations.