Lumension® Endpoint Intelligence Center

Intelligence Center » News Archive » Some mobile POS devices still affected by critical flaws months after patch

Some mobile POS devices still affected by critical flaws months after patch

2014/08/07

IDG News Service - (International) A researcher with MWR InfoSecurity and a colleague presenting at the Black Hat 2014 conference detailed how flaws in mobile point of sale (mPOS) devices from several manufacturers may be vulnerable to being taken over by attackers using customized smart cards in order to steal the payment card information read by the devices. The researchers reported the flaws previously and a patch for the EMV library was released in April, but some vendors have yet to push out the update to their devices, leaving the devices vulnerable.

Source: http://www.networkworld.com/article/2463081/security/some-mobile-pos-devices-still-affected-by-critical-flaws-months-after-patch.html

Note: This news synopsis is taken from the DHS Daily Open Source Infrastructure Report, a daily [Monday through Friday, except US Federal holidays] summary of open-source published information concerning significant critical infrastructure issues; a 10-day archive of the DOSIR can be found at: http://www.dhs.gov/dhs-daily-open-source-infrastructure-report.


Last Updated: 27 May 2016 10:21:17