According to a report by security blogger Brian Krebs, Oracle’s popular MICROS point-of-sale terminals support website was commandeered by a Russian cybergang. This is bad since MICROS is in the top three most popular payment systems in the world.
In a statement to Gizmodo, Oracle said it had “detected and addressed malicious code in certain legacy MICROS systems.” Right now, the extent of the breach is unclear, and the damage inflicted by the hackers has yet to be determined.
Krebs spoke with two security experts who have been breached on Oracle’s investigation, who drew a connection to Russian hackers. From Krebs:
Oracle’s MICROS customer support portal was seen communicating with a server known to be used by the Carbanak Gang. Carbanak is part of a Russian cybercrime syndicate that is suspected of stealing more than $1 billion from banks, retailers and hospitality firms over the past several years.
The hackers were reportedly able to steal all of the username and passwords of anyone who logged onto the MICROS support website after they had placed malicious code on the website. Oracle says that this hack hasn’t put any credit card or payment data at risk, but the company did force all MICROS users to reset passwords for the MICROS support terminals.
Again, MICROS is a vey popular point of sale system, with over 330,000 point of sale terminals. But it’s unclear how many of those terminal users logged into the support website. When reached by Gizmodo, an Oracle representative declined to comment, but said that he was aware of the report by Krebs On Security.