Point of Sale Blog Terms - Attivo Networks

Point of Sale

POS Under Attack

By: Carolyn Crandall It is never a good time to have to report a Point of Sale (POS) breach, but having to do so as holiday spending season commences is especially miserable, as this is a sure way to lose consumers’ trust and confidence in your organization during a potentially lucrative time of year.

As we gear up for our eagerly-anticipated Black Friday and Holiday spending rituals, let us hone in on the pervasiveness of serious security threats at work in the nation’s largest POS systems.
This blog discusses how POS breaches continue to pose an overwhelming threat to retail, hospitality, and business organizations worldwide.

The Hidden Threats Within Our Nation’s POS Systems

There are escalating security vulnerabilities at work in the nation’s point-of-sale (POS) systems. This situation can be quite series and one that deserves immediate attention and accompanying remediation.

In the last ten years there have been over 1,350 breaches made public within retail and business organizations. In 2016 alone, high profile breaches from Wendy’s, Eddie Bauer, Vera Wang, and Omni Hotels have shaken these companies and left impacted customers angry and frustrated.

’Tis The Season … For POS System Attacks?

It’s the most wonderful time of the year… especially if you’re a hacker. As consumers race to catch the shopping deals and retailers battle it out for their attention and dollars, hackers lurk in the shadows, ready for a chance to strike. This year, they have their eyes on the point-of-sale (POS) system prize. Carolyn Crandall, CMO of Attivo Networks, joined this week’s Hacker Tracker to share the vulnerabilities impacting POS systems and discuss whether massive data breaches are on the horizon in the months ahead.

Attivo Networks Predicts a Significant Increase in Reported POS Attacks During 2017

Attivo Networks issued a report detailing severe vulnerabilities in the nation’s POS systems that could lead to large breaches during the Holiday shopping period and on into next year. The report, based on primary research, shows how attackers are moving laterally undetected through networks, compromising asset management servers and then using them to plant malware on POS terminals for either timed or remote activation, creating the foundation for wide-scale credit card information theft. Traditional security devices have proven to be ineffective in detecting an attacker’s lateral movement, in providing malware activation visibility between asset servers and POS terminals, and in accurately correlating attack forensic data, according to the report.

Tech Company Sets Traps For Cyber Attackers Of Point Of Sale Systems

Undetected Vulnerabilities Lay in Wait and Could Lead to Large Holiday Breaches According to Research Report. Attivo issued a report today detailing severe vulnerabilities in the nation’s POS systems that could lead to large breaches during the Holiday shopping period and on into next year. The report, based on primary research, shows how attackers are moving laterally undetected through networks, compromising asset management servers and then using them to plant malware on POS terminals for either timed or remote activation, creating the foundation for wide-scale credit card information theft. Traditional security devices have proven to be ineffective in detecting an attacker’s lateral movement, in providing malware activation visibility between asset servers and POS terminals, and in accurately correlating attack forensic data according to the report.

Attivo Networks Sets Traps for Cyber Attackers Targeting the Nation’s POS Systems

Attivo issued a report today detailing severe vulnerabilities in the nation’s POS systems that could lead to large breaches during the Holiday shopping period and on into next year. The report, based on primary research, shows how attackers are moving laterally undetected through networks, compromising asset management servers and then using them to plant malware on POS terminals for either timed or remote activation, creating the foundation for wide-scale credit card information theft. Traditional security devices have proven to be ineffective in detecting an attacker’s lateral movement, in providing malware activation visibility between asset servers and POS terminals, and in accurately correlating attack forensic data according to the report.

Breach Alert: POS Vendor Lightspeed

Montreal-based Lightspeed POS, founded in 2005, sells a cloud-based point-of-sale system to retailers and restaurateurs that’s used to process both physical and online transactions, and which competes with the likes of Shopify and Square. According to the notification, the breach affects the company’s cloud-based POS product, Lightspeed Retail, which doesn’t handle card data or customers’ personal information, and which is mainly used by retailers.

Scroll to Top