Micros, the point-of-sale credit card payment system is suffering from a data breach. Security guru Brian Krebs has confirmed by Oracle that some hackers breached a support portal for Micros that has been acquired by Oracle since 2014.
It’s still not known how big the data breach is, but Krebs’ sources say it may affect up to 700 systems. The invaders had put malware onto the portal that would let them seize logins credentials for the companies using Micros support. Those account details may not lead them directly towards payment data, but it could be used to inject malware into the credit card system, which they can later use to grab sensitive data.
Oracle is quick to grasp that the breach has addressed the rouge code, without affecting the other cloud and service offerings. The hackers could not easily make use of it as the payment details are encrypted both in the database and when in use. A well-known Russian criminal group, the Carbanak Gang is believed to be responsible for the breach.
There is a concern that the intruders may get into someone’s else’s database as heavyweights like Burger King, Adidas, as well as Hilton are also using Micros’ payment system.