It’s the most wonderful time of the year… especially if you’re a hacker. As consumers race to catch the shopping deals and retailers battle it out for their attention and dollars, hackers lurk in the shadows, ready for a chance to strike. This year, they have their eyes on the point-of-sale (POS) system prize. Carolyn Crandall, CMO of Attivo Networks, joined this week’s Hacker Tracker to share the vulnerabilities impacting POS systems and discuss whether massive data breaches are on the horizon in the months ahead.
Undetected Vulnerabilities Lay in Wait and Could Lead to Large Holiday Breaches According to Research Report. Attivo issued a report today detailing severe vulnerabilities in the nation’s POS systems that could lead to large breaches during the Holiday shopping period and on into next year. The report, based on primary research, shows how attackers are moving laterally undetected through networks, compromising asset management servers and then using them to plant malware on POS terminals for either timed or remote activation, creating the foundation for wide-scale credit card information theft. Traditional security devices have proven to be ineffective in detecting an attacker’s lateral movement, in providing malware activation visibility between asset servers and POS terminals, and in accurately correlating attack forensic data according to the report.