Skip to content

5 Ways to Protect Your Business from a POS Malware-Related Data Breach

cashier holding POS system for contactless pay
It seems like every other day another massive malware-related data breach is making headlines. As a result, many of our customers have expressed valid concerns about the safety of their businesses – especially during this time of year as the biggest shopping season of the year gets under way.

But, while many of them are concerned with the how’s (how is this happening and how to we keep our data secure?) there are just as many of them concerned with the why’s (why are these attacks happening and why do they seem to be increasing?)

According to an infographic released by the PCI Security Standards Council (PCI SSC), the recent rash of breaches has a lot to do with the EMV shift date set. In other words, it appears that hackers are capitalizing on many of the POS vulnerabilities that currently exist until October 2015 when it’s most likely to get a little harder for them to commit their crimes.

While industry experts agree that EMV upgrades and tokenization will certainly help thwart future attacks, there are no guarantees, unfortunately. However, there are five things you can do right now that will help you protect your business against a malware-related data breach. They are:

  1. Use the latest anti-virus software and keep patches up to date.
  2. Review system logs manually or use an automatic tool to check for suspicious activity.
  3. Update all default and staff passwords with secure passwords.
  4. Consider implementing a:
    • PCI-approved point-of-interaction (POI) device with SRED functionality; or
    • PCI-approved point-to-point encryption (P2PE) solution.
  5. Confirm that all third party vendors are properly implementing and maintaining security controls outlined in the PCI Data Security Standard (PCI DSS).

So, we want to know: is your business taking extra precautions to protect against malware-related security attacks? Join our LinkedIn group to share your ideas or chat with other industry experts about what it takes to be a Level 10 in the retail IT industry! We’re always online, so if you’d rather just stay up-to-date on the latest developments in retail/hospitality technology, you can connect-with and like us on Facebook.

*Facts courtesy of PCI DSS website