POS Systems in Terrible State of Security -- Security Today

POS Systems in Terrible State of Security

By Ginger Hill
Aug 22, 2014

Most of us are all too familiar with the Target hack that cost this retail store and its partners more than $200 million. But, do you realize that this may have caused even more damage than was thought?

POS Systems in Terrible State of Security Based on a new assessment from the Secret Service, the same malware used in the Target attack also targeted more than a thousand other U.S. businesses. This malware is known as “Backoff,” and it gives hackers the ability to monitor all information passing through point-of-sale (POS) computers.

Although it’s unclear as to the number of hackers responsible for the more than 1,000 attacks, the Secret Service does allude to the terrible state of security most POS computers are in, recognizing that hackers usually gain access through remote access software that allows employees to work from home. Also, embedded devices, like credit card machines, are hardly ever patched or audited.

The Secret Service recommends the following remedies for all POS systems and businesses:

Encryption;
Two-factor authentication for all employees; and
Active security programs to monitor networks for unusual data transmissions.

About the Author

Ginger Hill is Group Social Media Manager.

Eagle Eye Networks Releases 2025 Trends in Video Surveillance Report
11/20/2024
Genetec Expands Access Control Market Share
11/19/2024
AMAG Technology Welcomes Chris Meiter as Vice President Global Business Development Video Solutions
11/18/2024
Napco Access Pro Launches New MVP Access App
11/18/2024
Evolon and UCC Partner to Deliver Proactive Video Monitoring Solutions
11/14/2024
ASIS International, International Protective Security Board Sign Memorandum of Understanding
11/14/2024
i-PRO Launches High Zoom Bullet Camera
11/14/2024
TSA Announces Proposed Rule Requiring Establishment of Pipeline, Railroad Cyber Risk Management Programs
11/12/2024

Featured

Choosing the Right Solution

Today, there is a strong shift from on-prem installations to cloud or hybrid-cloud deployments. As reported in the 2024 Genetec State of Physical Security report, 66% of end users said they will move to managing or storing more physical security in the cloud over the next two years. Read Now
- IP Video
New Report Reveals Top Security Risks for U.S. Retail Chains

Interface Systems, a provider of security, actionable insights, and purpose-built networks for multi-location businesses, has released its 2024 State of Remote Video Monitoring in Retail Chains report. The detailed study analyzed over 2 million monitoring requests across 4,156 retail locations in the United States from September 2023 to August 2024. Read Now
- Retail Loss Prevention
Gaining a Competitive Edge

Ask most companies about their future technology plans and the answers will most likely include AI. Then ask how they plan to deploy it, and that is where the responses may start to vary. Every company has unique surveillance requirements that are based on market focus, scale, scope, risk tolerance, geographic area and, of course, budget. Those factors all play a role in deciding how to configure a surveillance system, and how to effectively implement technologies like AI. Read Now
- Artificial Intelligence
6 Ways Security Awareness Training Empowers Human Risk Management

Organizations are realizing that their greatest vulnerability often comes from within – their own people. Human error remains a significant factor in cybersecurity breaches, making it imperative for organizations to address human risk effectively. As a result, security awareness training (SAT) has emerged as a cornerstone in this endeavor because it offers a multifaceted approach to managing human risk. Read Now
- Cybersecurity

Webinars

The Center for Safe and Resilient Schools and Workplaces

Precovery in Action: Proactive Strategies to Promote School Safety and Mass Violence Prevention
Hanwha Vision (formerly Hanwha Techwin)

Getting Control of your Access
Eagle Eye Networks Inc, Salient Systems

Insights into the Ever Changing World of Security for 2025

Whitepapers

BriefCam

The ROI of Video Analytics
911Cellular

A Buyer's Guide to Panic Button Systems
Allegion

The Current State of School Security

New Products

FEP GameChanger

Paige Datacom Solutions Introduces Important and Innovative Cabling Products GameChanger Cable, a proven and patented solution that significantly exceeds the reach of traditional category cable will now have a FEP/FEP construction. 3
Connect ONE®

Connect ONE’s powerful cloud-hosted management platform provides the means to tailor lockdowns and emergency mass notifications throughout a facility – while simultaneously alerting occupants to hazards or next steps, like evacuation. 3
A8V MIND

Hexagon’s Geosystems presents a portable version of its Accur8vision detection system. A rugged all-in-one solution, the A8V MIND (Mobile Intrusion Detection) is designed to provide flexible protection of critical outdoor infrastructure and objects. Hexagon’s Accur8vision is a volumetric detection system that employs LiDAR technology to safeguard entire areas. Whenever it detects movement in a specified zone, it automatically differentiates a threat from a nonthreat, and immediately notifies security staff if necessary. Person detection is carried out within a radius of 80 meters from this device. Connected remotely via a portable computer device, it enables remote surveillance and does not depend on security staff patrolling the area. 3