Collaborate Disseminate
[JR] over at [Tech Throwback] got ahold of an unusual piece of gear recently — a portable Point of Sale (POS) credit card machine from the late 1990s (video, embedded …read more Continue reading Portable 1990s POS Will Strain Your Back
A lot of electronics wind up in landfills, and when [Playful Electronics] saw an old cash register heading for the dump, he decided to give its VFD display a new …read more Continue reading Upcycling a VFD
MarginEdge’s tool is a restaurant management app that works with a business’ point of sale to streamline inventory, cost-tracking, ordering and recipes to eliminate the paperwork. Continue reading MarginEdge, a restaurant management software company, raises $18M
It’s a series of vulnerabilities:
Josep Rodriguez, a researcher and consultant at security firm IOActive, has spent the last year digging up and reporting vulnerabilities in the so-called near-field communications reader chips used in millions of ATMs and point-of-sale systems worldwide. NFC systems are what let you wave a credit card over a reader — rather than swipe or insert it — to make a payment or extract money from a cash machine. You can find them on countless retail store and restaurant counters, vending machines, taxis, and parking meters around the globe…
Point-of-sale terminal vendors Verifone and Ingenico have issued mitigations after researchers found the devices use default passwords. Continue reading Security Issues in PoS Terminals Open Consumers to Fraud
The modular malware is highly sophisticated but may not be able to capture credit-card info. Continue reading Cyberattackers Serve Up Custom Backdoor for Oracle Restaurant Software
After cybercriminals smoked out 3 million compromised payment cards on the Joker’s Stash marketplace, researchers linked the data to a breach at the popular barbecue franchise. Continue reading Dickey’s BBQ Breach: Meaty 3M Payment Card Upload Drops on Joker’s Stash
It’s complicated, but it’s basically a man-in-the-middle attack that involves two smartphones. The first phone reads the actual smartcard, and then forwards the required information to a second phone. That second phone actually conducts the transaction on the POS terminal. That second phone is able to convince the POS terminal to conduct the transaction without requiring the normally required PIN.
From a news article:
The researchers were able to demonstrate that it is possible to exploit the vulnerability in practice, although it is a fairly complex process. They first developed an Android app and installed it on two NFC-enabled mobile phones. This allowed the two devices to read data from the credit card chip and exchange information with payment terminals. Incidentally, the researchers did not have to bypass any special security features in the Android operating system to install the app…
Continue reading Interesting Attack on the EMV Smartcard Payment Standard
The malware is using DNS tunneling to exfiltrate payment-card data. Continue reading Alina Point-of-Sale Malware Spotted in Ongoing Campaign
Attackers are compromising large companies with the Cobalt Strike malware, and then deploying the Sodinokibi ransomware. Continue reading Sodinokibi Ransomware Now Scans Networks For PoS Systems