Looks Like a Russian Cybergang Hacked Into One of the World’s Largest Payment Systems

Image: Gizmodo

According to a report by security blogger Brian Krebs, Oracle’s popular MICROS point-of-sale terminals support website was commandeered by a Russian cybergang. This is bad since MICROS is in the top three most popular payment systems in the world.

In a statement to Gizmodo, Oracle said it had “detected and addressed malicious code in certain legacy MICROS systems.” Right now, the extent of the breach is unclear, and the damage inflicted by the hackers has yet to be determined.

Advertisement

Krebs spoke with two security experts who have been breached on Oracle’s investigation, who drew a connection to Russian hackers. From Krebs:

Oracle’s MICROS customer support portal was seen communicating with a server known to be used by the Carbanak Gang. Carbanak is part of a Russian cybercrime syndicate that is suspected of stealing more than $1 billion from banks, retailers and hospitality firms over the past several years.

The hackers were reportedly able to steal all of the username and passwords of anyone who logged onto the MICROS support website after they had placed malicious code on the website. Oracle says that this hack hasn’t put any credit card or payment data at risk, but the company did force all MICROS users to reset passwords for the MICROS support terminals.

Again, MICROS is a vey popular point of sale system, with over 330,000 point of sale terminals. But it’s unclear how many of those terminal users logged into the support website. When reached by Gizmodo, an Oracle representative declined to comment, but said that he was aware of the report by Krebs On Security.

Advertisement

[Krebs On Security]

Share This Story

About the author

William Turton

Staff Writer, Gizmodo | Send me tips: william.turton@gizmodo.com

TwitterPosts
PGP Fingerprint: 88DF AB75 FAFC 1D10 4C45 A875 CA45 ABE6 B08D 8E52PGP Key
OTR Fingerprint: 47F02E79 399AB8FA CC2A4DEF 4573B25F 18AB41D2