PaymentsJournal
SUBSCRIBE
  • Analysts Coverage
  • Truth In Data
  • Podcasts
  • Videos
  • Industry Opinions
  • News
  • Resources
No Result
View All Result
PaymentsJournal
  • Analysts Coverage
  • Truth In Data
  • Podcasts
  • Videos
  • Industry Opinions
  • News
  • Resources
No Result
View All Result
PaymentsJournal
No Result
View All Result

Oracle’s Micros System Hacked

Raymond Pucci by Raymond Pucci
August 9, 2016
in Analysts Coverage
0

Mobile Payment: Flat lay vector illustration

0
SHARES
0
VIEWS
Share on FacebookShare on TwitterShare on LinkedIn

Waiter—there’s a problem with my meal. Oracle’s widely used Micros Point-of-Sale software for restaurants and retailers has been hacked by fraudsters known to have previously broken into many other payment card systems. According to the following report, the incident was isolated to the Micros platform only and did not compromise other Oracle systems. Users were directed to reset passwords on the affected accounts.

Oracle detected malicious code in certain payment systems used in hospitality and retail, the company said. Details were first reported by cybersecurity writer Brian Krebs on Monday.

All customers of Micros, known for cloud-based tablet and mobile payments for food, beverages and hotels, are being asked to reset their passwords for an online support portal after Oracle found the malicious code in legacy systems, Krebs wrote on his website, KrebsOnSecurity. Oracle’s other cloud and corporate offerings were not affected, and the credit-card data is encrypted, Oracle told CNBC.

“To prevent a recurrence, Oracle implemented additional security measures for the legacy MICROS systems,” Oracle said in a letter to customers given to CNBC. Oracle did not respond to Krebs’ direct question about the breach, he said.

It’s not clear how widespread the hack is and how the attackers gained access to Oracle systems, Krebs reported. But two unnamed sources told Krebs that the hack could be tied to Russian cybercriminals. The sources told Krebs that Micros’ customer-support portal was seen communicating with a server known to be used by the Carbanak gang, which has been tied to one of the biggest banking breaches ever known.

Hospitality and retail payment transactions are targets for hackers as they represent high volumes of personal card data and can go undetected by both merchants and consumers for weeks, if not months. The stolen data will typically be used to make online, card-not-present transactions, where user identity validation is minimal. The anti-fraud battle is now an arms race between the hackers and the expanding security software industry. E-commerce fraud is expected to increase with EMV chip card and terminal transition at US merchants POS, which is why stolen card data still remains a valuable commodity for the hackers.

Overview by Raymond Pucci, Associate Director, Research Services at Mercator Advisory Group

Read the full story here

0
SHARES
0
VIEWS
Share on FacebookShare on TwitterShare on LinkedIn

    Analyst Coverage, Payments Data, and News Delivered Daily

    Sign up for the PaymentsJournal Newsletter to get exclusive insight and data from Javelin Strategy & Research analysts and industry professionals.

    Must Reads

    instant payments, real-time payments, RTP

    Banks Developing Instant Payments Products in the U.S. Should Focus on Billers to Generate New Revenue Streams  

    May 31, 2023
    Digital Wallet Use Delivers on Convenience and Security

    Digital Wallet Use Delivers on Convenience and Security

    May 30, 2023
    5 Ways to Protect Your Financial Institution from a Cyberattack

    5 Ways to Protect Your Financial Institution from a Cyberattack

    May 26, 2023
    traditional banks

    How Traditional Banks Can Modernize Without Risk

    May 25, 2023
    identity fraud

    Javelin’s Identity Fraud Study Highlights the Changing Nature of Fraud

    May 24, 2023
    SASE, security-as-a-service

    Security-as-a-Service Secures
    Distributed IT Models

    May 23, 2023
    mule. real-time

    Early Detection of Mule Activity Requires Real-Time Solutions

    May 22, 2023
    embedded finance, ecommerce

    How Retailers Can Enter the World of Embedded Finance Confidently 

    May 19, 2023

    Linkedin-in Twitter

    Advertise With Us | About Us | Terms of Use | Privacy Policy | Subscribe
    ©2023 PaymentsJournal.com

    • Analysts Coverage
    • Truth In Data
    • Podcasts
    • Videos
    Menu
    • Analysts Coverage
    • Truth In Data
    • Podcasts
    • Videos
    • Industry Opinions
    • Recent News
    • Resources
    Menu
    • Industry Opinions
    • Recent News
    • Resources
    • Analysts Coverage
    • Truth In Data
    • Podcasts
    • Industry Opinions
    • Faster Payments
    • News
    • Jobs
    • Events
    No Result
    View All Result

      Register to download this complimentary report from Brightwell: