Trend Micro has revealed that late 2014 point-of-sale attacks could be linked to an APT group, called Carbanak.

Threat analyst Jay Yaneza blogged Monday about the findings which tie POS activities with the Carbanak gang, recently noted for stealing as much as $1 billion from 100 banks in 30 countries.

Yaneza wrote that one malicious file targeting the Epicor point-of-sale system late last year was related to the Carberp banking malware family. Interestingly enough, Fox-IT published a report on the Carbanak campaign revealing that the APT group’s malware, called “Anunak” by saboteurs, used code from the Carberp trojan (hence the AV industry naming the threat Carbanak).

Trend Micro listed other malicious files on their blog – many with data stealing, keylogging and backdoor capabilities – which may have been used by the Carbanak gang last year against organizations in the U.S. and Canada.