Sunday, January 24, 13:07
Home security VISA: POS malware attacks on US fuel companies

VISA: POS malware attacks on US fuel companies

POSΗ company payment management By VISA he mentioned that North American businesses are facing attacks from hackers. Specifically, vulnerable companies operate gas stations and gas pumps. The target of hackers is development of POS malware in corporate networks.

According to By VISA, have at least been discovered and investigated lately five such incidents.

The main target of the hackers was acquisition access in networks fuel distributors, installing POS malware.

POS malware works as follows: it searches the computer's RAM for unencrypted payment card data. Subsequently, collect them data and downloads them to a remote server.

The VISA Payment Disruption (PFD) team said that the hacking teams found a weak point in the operation of gas stations and gas-operated businesses, and took advantage of it.

While some POS terminals support chip-and-PIN transactions, most "card readers" that are installed in gas pump companies do not.

These devices still work with older technology, which reads payment data only from the magnetic strip of cards.

The data from these outdated Appliances are sent to the gas station's main network unencrypted. Hackers knew this and thus infringed on business networks.

The November, VISA revealed violations in two businesses and three in December. These revelations indicate that the criminal groups in the cyberspace have found a new purpose and way attack.

According to VISA, the attacks on fuel companies started in summer. Two of the five attacks were linked to a known hacking team, the FIN8.

VISA mentioned that there are some easy ways to protect them customers, which could be followed by fuel distributors: 1) encryption of card data and 2) use POS terminal that supports chip-and-PIN transactions.

The second security practice can significantly reduce the chance of such attacks.

By October of 2020, all this businesses are required to change POS terminals to support such transactions. Until then, however, they are still vulnerable to attacks.


Please enter your comment!
Please enter your name here

Absent Mia
Absent Mia
Being your self, in a world that constantly tries to change you, is your greatest achievement


Signal: How to check if your messages are private and secure?

The Signal messaging application has suddenly gained a large number of new users, which is due to the recent "scandal" of WhatsApp, which announced ...

Instagram: How to enable notifications for specific profiles

There are some profiles on Instagram where you want to see the content they publish as soon as possible - it can be a news ...

NASA's historic launch pad is to be demolished

NASA's famous Mobile Launcher Platform-2 launch platform, which has been linked to the Apollo and Space Shuttle missions, ...

Elon Musk: Gives $ 100 million for best CO2 capture technology Ο Elon Musk δήλωσε χθες, στο λογαριασμό του στο Twitter, ότι σκοπεύει να δώσει 100 εκατομμύρια...

How can you unblock sites and services using a VPN?

The Internet is free and open to all. However, there are some sites and services whose content is blocked, which ...

Google Chrome: How to manage your extensions?

Google Chrome extensions can be very useful, as they improve your productivity when using the browser.

Intel CPUs Review: Core i7-10700 vs Core i7-10700K!

Over the years, the Intel series of processors (CPUs) introduced the series of overclocking models "K" and more recently the series ...

The DeLorean can return as an electric car

The DMC DeLorean has been out of production for almost 40 years, but it looks like the iconic vehicle will return as an electric car.

Windows RDP servers are used to support DDoS

Cybercrime gangs are abusing Windows Remote Desktop Protocol (RDP) systems to reinforce the unwanted ...

SEPA: He refused to pay a ransom and thousands of files were leaked

Thousands of stolen files of the Scottish Environmental Protection Agency (SEPA) have been published by hackers, after the organization refused to pay the ransom ...