Oracle-owned MICROS PoS systems vendor breached

MICROS, the point-of-sale payment systems vendor owned by Oracle, has suffered a data breach, and there are indicators that point to the infamous Carbanak (aka Anunak) cybercriminal gang being the culprit. MICROS is one of the biggest PoS vendors in the world – its PoS systems are used by many companies in the retail and hospitality industry, such as Ikea, BurgerKing, Starbucks, Hilton, Hyatt, Accor Hotels, and many others. According to Brian Krebs‘s sources, the … More Continue reading Oracle-owned MICROS PoS systems vendor breached

Cicis Pizza Suffers Payment Card Breach at 130+ Locations

Cicis Pizza, a casual fast food restaurant chain, has acknowledged it suffered a payment card breach at more than 130 locations. On July 19, the restaurant chain informed its customers of the breach: “Cicis values its customers and respects the privacy of your information. As a precautionary measure, we want to inform you that your […]… Read More

The post Cicis Pizza Suffers Payment Card Breach at 130+ Locations appeared first on The State of Security.

Continue reading Cicis Pizza Suffers Payment Card Breach at 130+ Locations

‘PunkeyPOS’: Researchers Discover Ongoing Malware Campaign Targeting US Businesses

Researchers have identified an ongoing campaign that has infected over 200 point-of-sale terminals leveraging ‘PunkeyPOS’ – a malware variant first uncovered in April 2015. According to security experts at PandaLabs, the malware sample has been predominantly targeting US businesses – more specifically, restaurants. In a blog post, researchers explained PunkeyPOS, which originates from an older […]… Read More

The post ‘PunkeyPOS’: Researchers Discover Ongoing Malware Campaign Targeting US Businesses appeared first on The State of Security.

Continue reading ‘PunkeyPOS’: Researchers Discover Ongoing Malware Campaign Targeting US Businesses

Sophisticated AbbadonPOS malware upgraded in its attempt to exfiltrate credit card data from retailers

Criminals have updated the AbbadonPOS malware with the ability to search for known point-of-sale (PoS) processes, in its hunt for consumers’ credit card data.
Beware spammed-out poisoned Word documents, warns David Bisson.
Continue reading Sophisticated AbbadonPOS malware upgraded in its attempt to exfiltrate credit card data from retailers

ModPOS – The Mechanics of a POS Malware Framework

Malware as a business model rests on two core tenets—the first is innovation. Malware authors are constantly innovating tools and techniques that allow their software to slip past network defenses, to brute force their way past weak authentication credentials, and to escalate local privileges—all in an attempt to counter the work of security personnel. Not […]… Read More

The post ModPOS – The Mechanics of a POS Malware Framework appeared first on The State of Security.

Continue reading ModPOS – The Mechanics of a POS Malware Framework