Point of Sale (POS) Malware
POS malware refers to malicious software that affects POS and payment terminals with the intent to steal financial credit card/debit card information.
Criminals may compromise a machine either physically (e.g. through plugging in wireless data transmitters), or more likely by using a Remote Access Trojan (RAT) to remotely access machines, allowing them to copy and export the data.
There have recently been reports of newer versions of POS malware targeting businesses in the hospitality industry, (although other businesses should also be aware of this threat).
Make sure that devices are secured.
- Ensure that all software is frequently patched and receives necessary updates from security vendors.
Educate and train staff to defend against common cyber threats/exploits, for example:
- Phishing - Remote Access Trojans can be delivered via phishing attacks, see the NCSC's guide on defending against this at https://www.ncsc.gov.uk/phishing.
- Physically securing devices e.g. are devices locked away/secured against physical compromise?
- This point is more aimed at IT/security professionals - 'whitelisting' allows only pre-approved applications to run on systems.
Monitor financial activity for fraudulent activity.
- If you suspect that accounts are being used for fraudulent transactions, contact your banks immediately.
If you suffer from this or any other type of cyber crime, please report it to Action Fraud.
We always encourage victims to report the crime to ActionFraud via phone (0300 123 2040) or website (https://www.actionfraud.police.uk). Reporting helps build intelligence for law enforcement, which can aid investigations and informational campaigns.