Hackers had access to dashboards which is used to remotely manage and control thousands of credit card payment terminals manufactured by digital payments giant Wiseasy.
Wiseasy is a popular Android-based payment terminal maker used in restaurants, hotels, retail outlets and schools across the Asia-Pacific region.
Two cloud dashboards were exposed, but neither were protected with basic security features, like two-factor authentication.
It allowed hackers to access nearly 140,000 Wiseasy payment terminals around the world.
The dashboard also allowed anyone to view names, phone numbers, email addresses and access permissions for Wiseasy dashboard users, including the ability to add new users.
Source: https://techcrunch.com/2022/08/01/wiseasy-android-payment-passwords/?guccounter=1
"id": "WIS15171022",
"linkid": "wiseasygroup",
"type": "Cyber Attack",
"date": "08/2022",
"severity": "100",
"impact": "6",
"explanation": "Attack threatening the economy of a geographical region"