Close
  • Latest News
  • Big Data and Analytics
  • Cloud
  • Networking
  • Cybersecurity
  • Applications
  • IT Management
  • Storage
  • Sponsored
  • Mobile
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
Read Down
Sign in
Close
Welcome!Log into your account
Forgot your password?
Read Down
Password recovery
Recover your password
Close
Search
Logo
Logo
  • Latest News
  • Big Data and Analytics
  • Cloud
  • Networking
  • Cybersecurity
  • Applications
  • IT Management
  • Storage
  • Sponsored
  • Mobile
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
More
    Home Cybersecurity
    • Cybersecurity
    • Networking

    Retail Breaches Get Supersized as Attackers Get Hungry

    By
    Sean Michael Kerner
    -
    October 1, 2014
    Share
    Facebook
    Twitter
    Linkedin
      retail data breach

      2014 is likely to go down in history as the year of the data breach. The latest set of reported breaches includes a second attack against grocery chain Supervalu and an attack against point-of-sale (POS) vendor Signature Systems that affects more than 300 restaurants.

      It’s bad enough for an organization to admit that it is the victim of a data breach, but it is even more troublesome when a company has to admit to multiple successive breaches.

      In the case of Supervalu, the grocery chain first admitted on Aug. 14 that it had been the victim of a data breach that impacted 180 of its stores and affiliates across the United States. In a statement issued Sept. 29, Supervalu admitted that a different malware than the initial breach was installed in its payment card transaction systems. Supervalu has not yet publicly identified what malware was present in the Aug. 14 breach or which malware was found in the breach disclosed Sept. 29.

      Multiple POS system malware variants are currently active. Among the most prevalent is the Backoff malware, which has already infected at least 1,000 retailers.

      In the latest intrusion, Supervalu claims that security technology now in place at its stores limited the ability of the new malware to steal any customer information.

      “Supervalu believes that this malware did not succeed in capturing data from any payment cards used at any stores other than at some checkout lanes at four Cub Foods franchised stores,” Supervalu noted in a statement. “Even as to the checkout lanes at these four stores, the company has made no determination that any cardholder data was in fact stolen by the intruder.”

      Signature Systems

      In all of the retail breaches, POS systems are the primary target. While some stores have their own POS systems, others use third-party POS vendors, like Signature Systems, which provides services to restaurants, including Jimmy Johns. Jimmy Johns was breached in an incident first disclosed Sept. 24 and involving 216 of its restaurant locations.

      Signature Systems revealed that 108 additional restaurants were breached in the same incident.

      “We have determined that an unauthorized person gained access to a user name and password that Signature Systems used to remotely access POS systems,” Signature Systems wrote in an advisory. “The unauthorized person used that access to install malware designed to capture payment card data from cards that were swiped through terminals in certain restaurants.”

      The issue of unauthorized remote access to a POS system is one of the primary root causes in many of the retail breaches reported in 2014 so far. For Backoff malware in particular, remote access has been identified by multiple security vendors as being the primary path to infection.

      The recent incidents at Supervalu and at Signature Systems show two different sides of the POS breach issue.

      With Supervalu, it would appear as though the company did learn from the initial breach and does have controls in place to detect and limit the risk of malware. The Signature Systems incident raises the question of trust in third-party payment providers. Simply put, if an attacker is able to breach one of these providers, instead of breaching one retailer or restaurant, they breach hundreds.

      The message about POS security, including the need to secure remote access and actively scan for malware, is one that not all retailers have yet learned. The simple truth: Even in the case of the Backoff malware, though the U.S. government has warned that 1,000 retailers are at risk, to date, 1,000 retailers have not yet publicly disclosed that they were victims.

      With Thanksgiving and the big holiday shopping season ahead, the stakes in the race to secure POS systems couldn’t be any higher.

      Sean Michael Kerner is a senior editor at eWEEK and InternetNews.com. Follow him on Twitter @TechJournalist.

      Sean Michael Kerner
      Sean Michael Kerner is an Internet consultant, strategist, and contributor to several leading IT business web sites.

      MOST POPULAR ARTICLES

      Big Data and Analytics

      Alteryx’s Suresh Vittal on the Democratization of...

      James Maguire - May 31, 2022 0
      I spoke with Suresh Vittal, Chief Product Officer at Alteryx, about the industry mega-shift toward making data analytics tools accessible to a company’s complete...
      Read more
      Cybersecurity

      Visa’s Michael Jabbara on Cybersecurity and Digital...

      James Maguire - May 17, 2022 0
      I spoke with Michael Jabbara, VP and Global Head of Fraud Services at Visa, about the cybersecurity technology used to ensure the safe transfer...
      Read more
      Cloud

      IGEL CEO Jed Ayres on Edge and...

      James Maguire - June 14, 2022 0
      I spoke with Jed Ayres, CEO of IGEL, about the endpoint sector, and an open source OS for the cloud; we also spoke about...
      Read more
      Applications

      Cisco’s Thimaya Subaiya on Customer Experience in...

      James Maguire - May 10, 2022 0
      I spoke with Thimaya Subaiya, SVP and GM of Global Customer Experience at Cisco, about the factors that create good customer experience – and...
      Read more
      Big Data and Analytics

      GoodData CEO Roman Stanek on Business Intelligence...

      James Maguire - May 4, 2022 0
      I spoke with Roman Stanek, CEO of GoodData, about business intelligence, data as a service, and the frustration that many executives have with data...
      Read more
      Logo

      eWeek has the latest technology news and analysis, buying guides, and product reviews for IT professionals and technology buyers. The site’s focus is on innovative solutions and covering in-depth technical content. eWeek stays on the cutting edge of technology news and IT trends through interviews and expert analysis. Gain insight from top innovators and thought leaders in the fields of IT, business, enterprise software, startups, and more.

      Facebook
      Linkedin
      RSS
      Twitter
      Youtube

      Advertisers

      Advertise with TechnologyAdvice on eWeek and our other IT-focused platforms.

      Advertise with Us

      Menu

      • About eWeek
      • Subscribe to our Newsletter
      • Latest News

      Our Brands

      • Privacy Policy
      • Terms
      • About
      • Contact
      • Advertise
      • Sitemap
      • California – Do Not Sell My Information

      Property of TechnologyAdvice.
      © 2022 TechnologyAdvice. All Rights Reserved

      Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.

      ×