Polonus should pass the credits to US Homeland Security Officials as it is their link and their detection.
So credits go where credits are due.
I was just the one that for the first time here on the forums asked attention to Alina point-of-sales cybercrime bot family:
https://forum.avast.com/index.php?topic=149713.0Search Alina's family here:
http://cybercrime-tracker.net/index.php?s=0&m=40&search=AlinaMind you that still in a lot of large departments stores the underlying point of sale software used at the counter etc. is windows XP.
Quite a cyber-crime risk I would say, considering the status of that Windows software - obsolete.
polonus