PaymentsJournal
No Result
View All Result
SIGN UP
  • Commercial
  • Credit
  • Debit
  • Digital Assets & Crypto
  • Digital Banking
  • Emerging Payments
  • Fraud & Security
  • Merchant
  • Prepaid
PaymentsJournal
  • Commercial
  • Credit
  • Debit
  • Digital Assets & Crypto
  • Digital Banking
  • Emerging Payments
  • Fraud & Security
  • Merchant
  • Prepaid
No Result
View All Result
PaymentsJournal
No Result
View All Result

Retail POS Hit By Fraud Again

By Raymond Pucci
October 3, 2017
in Analysts Coverage
0
2
SHARES
0
VIEWS
Share on FacebookShare on TwitterShare on LinkedIn
Merchant Shopping

Merchant Shopping

Another week, another payment security breach—make that two. This time, Whole Foods and Sonic have revealed their POS terminals have been compromised. The following article describes further details related to each case.

Two U.S. companies recently acknowledged high-profile point-of-sale (POS) breaches that affected an unknown number of customers.

On September 26, investigative reporter Brian Krebs announced that the fast food chain Sonic Drive-In, which has almost 3,600 locations across the U.S., had acknowledged a breach impacting an unidentified number of its locations’ PoS systems. The breach appeared to match a supply of approximately 5 million credit and debit card details that were being offered for sale at the cybercrime forum Joker’s Stash for $25 to $50 each.

In a statement provided to Krebs, Sonic said, “Our credit card processor informed us last week of unusual activity regarding credit cards used at Sonic. The security of our guests’ information is very important to Sonic. We are working to understand the nature and scope of this issue, as we know how important this is to our guests.”

“We immediately engaged third-party forensic experts and law enforcement when we heard from our processor,” the company added. “While law enforcement limits the information we can share, we will communicate additional information as we are able.”

Separately, on September 28, Whole Foods announced that it had learned of unauthorized access to payment card information used at taprooms and restaurants in some of its stores. Because those venues use a different PoS system than Whole Foods’ store checkout systems, the company said its checkout systems were not affected.

“When Whole Foods Market learned of this, the company launched an investigation, obtained the help of a leading cyber security forensics firm, contacted law enforcement, and is taking appropriate measures to address the issue,” the company said.

Since Whole Foods was recently acquired by Amazon.com, the statement noted that Amazon.com systems don’t connect to the affected PoS systems. “Transactions on Amazon.com have not been impacted,” Whole Foods said.

Unfortunately, these security breaches typically offer more questions than answers. The incidents are usually made public after a considerable amount of time. Often it’s a third party that reveals the breach. Then the merchants don’t give out much information and say that there is an ongoing investigation and that security experts have been brought in. Meanwhile, consumers are understandably frustrated. Lessons not learned: too many merchant POS terminals are not upgraded with the latest security defenses, plus many are unattended and easy prey for tampering.

Overview by Raymond Pucci, Associate Director, Research Services at Mercator Advisory Group

Read the full story here

2
SHARES
0
VIEWS
Share on FacebookShare on TwitterShare on LinkedIn
Tags: Data BreachPoint of SaleRetail

    Get the Latest News and Insights Delivered Daily

    Subscribe to the PaymentsJournal Newsletter for exclusive insight and data from Javelin Strategy & Research analysts and industry professionals.

    Must Reads

    embedded lending

    Embedded Lending as a Growth Strategy for ISVs—How to Maximize Revenue Potential

    June 18, 2025
    merchant ai

    Merchants Find More Use Cases for AI Amid Risks

    June 17, 2025
    prepaid payroll

    Taking the Check Out of Paycheck: The Role of Prepaid in Payroll

    June 16, 2025
    Banking-as-a-service BaaS

    Remodeling Main Street: How Community Banks Can Leverage the Banking-as-a-Service Paradigm

    June 12, 2025
    How Employee Performance Enhances the Customer Experience

    Three Strategies to Maximize Loyalty in the AI-Driven World 

    June 11, 2025
    PFM tools

    How FIs Are Cutting Through Subscription Clutter with PFM Tools

    June 10, 2025
    child identity theft

    Stranger Danger: Protecting Your Children from Identity Theft

    June 9, 2025
    agentic commerce

    The Agentic Advent: How the Next Iteration of AI is Shaping Commerce

    June 6, 2025

    Linkedin-in X-twitter
    • Commercial
    • Credit
    • Debit
    • Digital Assets & Crypto
    • Digital Banking
    • Commercial
    • Credit
    • Debit
    • Digital Assets & Crypto
    • Digital Banking
    • Emerging Payments
    • Fraud & Security
    • Merchant
    • Prepaid
    • Emerging Payments
    • Fraud & Security
    • Merchant
    • Prepaid
    • About Us
    • Advertise With Us
    • Sign Up for Our Newsletter
    • About Us
    • Advertise With Us
    • Sign Up for Our Newsletter

    ©2024 PaymentsJournal.com |  Terms of Use | Privacy Policy

    • Commercial Payments
    • Credit
    • Debit
    • Digital Assets & Crypto
    • Emerging Payments
    • Fraud & Security
    • Merchant
    • Prepaid
    No Result
    View All Result