POS systems are unique, typically single-purpose and require limited software to function. Defenders should use this to their advantage, and enable application whitelisting to prevent unwanted or modified processes from running.
Point-of-Sale endpoints used by enterprises are now facing a new threat- PinkKite - a tiny malware less than 6k in size, with memory-scraping and data validation tools, able to steal a large number of credentials and credit card data.
Researcher demonstrates how hacking Point of Sale device can be done with a Raspberry Pi, not only to steal credit card data but also to change prices.
Eddie Bauer is the latest in an alarmingly long, and growing, list of data breach victims hit by PoS malware
Hackers have attacked 20 hotels in the US run by HEI Hotels and Resorts with a targeted malware. The hotels included 12 Starwood, six Marriott, one Hyatt and one InterContinental.
POS-terminals have increasingly become a target for cyber-attackers in Russia, posing a threat to ordinary buyers and shoppers, according to analysts of FinCERT
Multigrain malware targets specific processes operating on point-of-sale systems and then exfiltrates data to command and control servers via DNS queries.