So far, the card scheme has identified three unique attacks, with two targeting North American fuel dispenser merchants, who are an increasingly attractive target for hackers. Nevertheless, the attacks, which are carried out on the point-of-sale systems, differ from ‘skimming’ at fuel pumps because the former requires that criminals access a vendor’s internal network.
In one incident, hackers were able to gain access to systems through a phishing email containing a malicious link that was sent to an employee. Through the link, cybercriminals accessed the merchant network and harvested payment card data from there.
In the second attack, experts were unable to determine how hackers gained initial access, but magnetic strip data from payment cards appeared to have been targeted specifically.
Every day we send out a free e-mail with the most important headlines of the last 24 hours.
Subscribe now