Verifone investigates breach that targeted US merchants
Terminal maker Verifone says it’s investigating a breach that involved an attempt to get into its corporate network and targeted US merchants, reports Paybefore (Banking Technology‘s sister publication).
The company, which sells point of sale (POS) technology, says the 17 January incident has not resulted in any misuse of data.
“Verifone’s information security team identified evidence of this very limited cyber intrusion into our corporate network in January 2017, and we proactively notified Visa, Mastercard and other card schemes,” Verifone’s spokesman says. The apparent attack targeted approximately 24 US petrol stations and convenience stores, though “our payment networks and Verifone’s payment terminals remained secure and fully operational”, he adds.
Verifone has since beefed up its security and is working to determine what information the attackers were after. So far, though, “there have been no adverse events or misuse of any data resulting from this incident,” the spokesman says.
In an effort to gain more business at gas stations, Verifone in October said it had adopted and deployed a new mobile API standard designed to better tie together payment and loyalty applications for customers at petrol stations and convenience stores.
Earlier this year, FIS and Verifone said they would work together to make it easier (and instantaneous) for consumers to redeem loyalty points, some $16 billion of which are left on the table annually in the US.
US data breaches hit an all-time high of 1,093 in 2016, according to a recent report from CyberScout and the Identity Theft Resource Centre. That represents a 40% increase from the previous year.