Hackers accessed dashboards used to remotely manage and control thousands of credit card payment terminals manufactured by digital payments giant Wiseasy.
Wiseasy employee passwords used for accessing Wiseasy’s cloud dashboards — included an “admin” account were found on a dark web marketplace actively used by cybercriminals.
The incident allowed the hackers to access nearly 140,000 Wiseasy payment terminals around the world.
Source: https://techcrunch.com/2022/08/01/wiseasy-android-payment-passwords/
TPRM report: https://scoringcyber.rankiteo.com/company/wiseasygroup
"id": "wis223871122",
"linkid": "wiseasygroup",
"type": "Breach",
"date": "08/2022",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"{'affected_entities': [{'industry': 'Digital Payments',
'location': 'Global',
'name': 'Wiseasy',
'type': 'Company'}],
'attack_vector': 'Compromised Credentials',
'data_breach': {'type_of_data_compromised': 'Credentials'},
'description': 'Hackers accessed dashboards used to remotely manage and '
'control thousands of credit card payment terminals '
'manufactured by digital payments giant Wiseasy.',
'impact': {'data_compromised': ['Dashboard Access Credentials'],
'systems_affected': ['Wiseasy Cloud Dashboards',
'Payment Terminals']},
'initial_access_broker': {'data_sold_on_dark_web': True,
'entry_point': 'Compromised Credentials'},
'motivation': 'Unauthorized Access',
'post_incident_analysis': {'root_causes': 'Weak Password Management'},
'threat_actor': 'Unknown',
'title': 'Wiseasy Payment Terminal Hack',
'type': 'Unauthorized Access',
'vulnerability_exploited': 'Weak Password Management'}