BlackPOS Targets Retailers’ POS Systems

The credit card breach on the point of sale systems at Target should make any business owner that accepts credit cards on their POS machines a little more cautious of their systems’ security. The breach was caused by malware (i.e., malicious software) called BlackPOS that infiltrated the firewall and installed itself on Target’s point of sale systems. This malware captured data from the credit card as it was swiped at the terminal. Although Target’s anti-malware software failed to detect the intrusion, the compromise of the retailer’s security system highlights the importance of maintaining active anti-virus and anti-malware software.

Payment Card Industry – Data Security Standards (PCI-DSS) 3.0 requirement 5.1.2 calls for "perform periodic evaluations to identify and evaluate evolving malware threats." At POS Nation, we install anti-virus software on every POS and back-office system that we custom configure. We cannot stress the importance of keeping this software updated with the latest definitions. In addition, all point of sale software sold by POS Nation has met PCI compliance standards for the encryption and storage of credit card data. If you’d like to secure your system yourself, however, there are several versions of free anti-malware software that can be downloaded, and we’re happy to offer advice and suggestions to help you determine which anti-malware software is the most appropriate for your business.

Business owners should always review the PCI-DSS website www.pcisecuritystandards.org for any updates to maintain compliance of their POS System and network. The more that you can do to keep your system and network safe, the less exposure and liability you have in the event of a breach. Even a one-time breach can cause a small business owner to lose their business.