In a letter to users of its MICROS point-of-sale system, Oracle Security states that it has found and fixed malicious malware in a few legacy MICROS systems.
The IT Giant claims that payment card data is encrypted and held by MICROS systems, with no impact on other services.
The accounts that MICROS employees use to remotely operate payment terminals across the globe need to have their passwords updated.
The hackers gained access to customers' accounts and took control of their MICROS point-of-sale (POS) terminals by breaking into the Oracle MICROS payment terminals' troubleshooting site and stealing their login credentials.
Source: https://securityaffairs.com/50312/cyber-crime/micros-hackers-hit-5-vendors.html
TPRM report: https://scoringcyber.rankiteo.com/company/micros-systems-inc
"id": "mic1953291023",
"linkid": "micros-systems-inc",
"type": "Malware",
"date": "08/2016",
"severity": "75",
"impact": "2",
"explanation": "Attack limited on finance or reputation"{'affected_entities': [{'industry': 'Technology',
'name': 'Oracle',
'type': 'IT Company'}],
'attack_vector': 'Credential Theft',
'data_breach': {'data_encryption': ['Yes'],
'sensitivity_of_data': ['High'],
'type_of_data_compromised': ['Payment Card Data']},
'description': 'In a letter to users of its MICROS point-of-sale system, '
'Oracle Security states that it has found and fixed malicious '
'malware in a few legacy MICROS systems. The IT Giant claims '
'that payment card data is encrypted and held by MICROS '
'systems, with no impact on other services. The accounts that '
'MICROS employees use to remotely operate payment terminals '
'across the globe need to have their passwords updated. The '
"hackers gained access to customers' accounts and took control "
'of their MICROS point-of-sale (POS) terminals by breaking '
"into the Oracle MICROS payment terminals' troubleshooting "
'site and stealing their login credentials.',
'impact': {'data_compromised': ['Payment Card Data'],
'payment_information_risk': ['High'],
'systems_affected': ['MICROS Point-of-Sale Systems']},
'initial_access_broker': {'entry_point': ['Troubleshooting Site'],
'high_value_targets': ['MICROS Point-of-Sale '
'Systems']},
'motivation': 'Unauthorized Access',
'post_incident_analysis': {'corrective_actions': ['Password Reset',
'Malware Removal'],
'root_causes': ['Weak Password Management',
'Credential Theft']},
'response': {'communication_strategy': ['Letter to Users'],
'containment_measures': ['Password Reset'],
'remediation_measures': ['Malware Removal']},
'title': 'Oracle MICROS Point-of-Sale System Breach',
'type': 'Malware Infection',
'vulnerability_exploited': 'Weak Password Management'}