Monthly Archives: August 2016

Major data breach hits Oracle’s MICROS point of sale platform

Oracle has suffered a major data breach affecting its MICROS POS payments systems.  The hack involved malicious code found on MICROS customer service systems.  The malware allowed hackers to access customer login information.   Early indications are that the attack originated in Russia. Oracle believes that individual transaction data was not compromised, but it is [...]

By |2017-11-18T15:32:37-05:00August 10th, 2016|data breach, data security, MICROS, Oracle|0 Comments

Mastercard acquiring UK-based VocaLink, expanding direct payments capabilities

Fast on the heels of Visa's enhanced partnership with PayPal, Mastercard announced its acquisition of UK-based VocaLink, a real-time payments platform.  The move expands Mastercard's ecosystem beyond traditional card-based payments into market space occupied by the likes of PayPal and its Venmo direct payments platform. Mastercard points out that ACH-based transfers represent 50% of payments [...]

By |2017-11-18T15:32:37-05:00August 10th, 2016|MasterCard, PayPal, Vocalink|0 Comments

Possible massive Yahoo data breach includes userids, passwords and birthdates

Yahoo is investigating the claims of a hacker that 200 million+ Yahoo account credentials and personally identifiable information have been backed and are for sale on the dark web.  The hacker, who claims to also be associated with recent LinkedIn and MySpace data breaches, stated that the data is "most likely" from 2012. The hacker, [...]

By |2017-11-18T15:32:37-05:00August 3rd, 2016|data breach, data security, Yahoo|0 Comments

Small inexpensive device can hack mag card readers

Computerworld published an article describing a tiny device that can wirelessly hack point of sale and other magnetic-stripe based systems by sending malicious keyboard commands using a design vulnerability in those systems.  Apparently a hotel room lock could be hacked within 18-30 minutes using the device. The device was inspired by "MagSpoof" which is a device that can [...]

By |2017-11-18T15:32:37-05:00August 3rd, 2016|data security, EMV|0 Comments