The malware typically consists of the following four capabilities: Scraping memory for track data, logging keystrokes, command & control (C2) communication, and injecting malicious stub into explorer.exe
The impact of a compromised PoS system can affect both the businesses and consumer by exposing customer data such as names, mailing addresses, credit/debit card numbers, phone numbers, and e-mail addresses to criminal elements.
Read US-CERT alert here – https://www.us-cert.gov/ncas/alerts/TA14-212A