New cyber threat targets bricks and mortar stores

  • Technology
  • October 19, 2016
  • Sarah Dunn
New cyber threat targets bricks and mortar stores

RAM scraper malware harvests customers’ card data and PIN numbers by exploiting a security vulnerability in the moment between when the card is swiped and that information is encrypted by the retailer’s POS system. Macmillan says this kind of malware is much harder to detect than card skimmers because it’s usually installed remotely on the retailer’s network via hacking or infected email attachments and hyperlinks.

This malware is stealthy – Macmillan says it can be easily deployed across every store in a business network, and deleted remotely leaving no criminal evidence. It can affect any retailer using an internet-connected POS system instore.

“Until recently RAM scraper breaches had been largely confined to North America but cybercriminals are now increasingly turning their attention to Australian companies,” he says. “The busy Christmas period is looming and international cybercriminals may well decide it is a good time to start looking further afield for opportunities in New Zealand.”

Many of New Zealand’s largest retailers have Australian owners, which Macmillan says makes New Zealand a likely next target. He believes large multi-store retailers’ high volume of transactions makes this kind of business an attractive mark.

All retailers need to take cyber security seriously, Macmillan says, pointing out that RAM scrapers are just one of the many different tools used by criminals to attack businesses online. He says it’s vital for retailers to take action sooner rather than later, particularly if they are using older POS operating systems and applications.

“Like the majority of businesses, many New Zealand retailers are not doing enough to protect themselves so they really do need to wake up to the cybersecurity threat that they are under.”

Guy Worsley, senior commercial broker at Rothbury Insurance Brokers, says RAM scrapers have been prevalent around the world since 2008. They’re predominantly active in the US, but also target Europe and Australasia. Retailers are the biggest targets, but hotels, food services, and healthcare businesses can also be affected: “Anywhere there’s a point of sale.”

Worsley advises retailers to liaise with their IT security management companies to understand their vulnerability, noting that users are the weakest point of any security system.

“The weakest link in our cybersecurity system is me opening an email and letting malware in.”

A change in login details or a denial of access requiring the changing of a password can be signs of a security breach, Worsley says. He says the increased retail spending kicking in now and continuing through Christmas until the end of January will see increased vulnerability to RAM scraper style attacks.

Worsley says customers defrauded by a RAM scraper attack are likely to be protected by their bank, which will often note fraudulent activity and take steps to address it. However, if the retailer is found to have been negligent in relation to the attack, a cyber insurance policy can protect its liability in this situation.

Kaon Security has provided six tips to help retailers guard against RAM scraper attacks:

1. Replace POS equipment’s default password settings with strong passwords that include a mix of upper and lower case letters, numerals and symbols.

2. Hackers target older operating systems and applications so only use current, supported versions of POS operating systems whose updates address the latest security vulnerabilities. Many retail systems still run old versions of Windows software that cannot receive new security patches so it is best to upgrade to the latest version of Windows.

3. As a bare minimum, install anti-virus software protection on the POS system and keep it up-to-date. A better option is to install a full endpoint protection solution, which not only helps to prevent malware from getting into the system but also adds another layer of security protection at each POS terminal.

4. Review network design and configuration so as to segment the network in a manner that monitors traffic to and from the POS system, and deploy firewalling to prevent intrusions.

5. If remote connectivity is required then enable it only when needed. Contact your POS vendor or integrator to take immediate steps to disable remote access when not in use.

6. Educate and regularly remind all employees (from the top to the bottom) about the risk of opening emails or clicking links from sources they do not know.  

​ ​

This is a community discussion forum. Comment is free but please respect our rules:

  1. Don’t be abusive or use sweary type words
  2. Don’t break the law: libel, slander and defamatory comments are forbidden
  3. Don’t resort to name-calling, mean-spiritedness, or slagging off
  4. Don’t pretend to be someone else.

If we find you doing these things, your comments will be edited without recourse and you may be asked to go away and reconsider your actions.
We respect the right to free speech and anonymous comments. Don’t abuse the privilege.


Gun retail will change after the Christchurch shooting

  • Opinion
  • March 18, 2019
  • Sarah Dunn
Gun retail will change after the Christchurch shooting

In the wake of an appalling attack, public sentiment around guns sales has changed. NZ Retail and The Register editor and associate publisher Sarah Dunn considers how gun retailers can work with the community in this new environment.

Read more
Sponsored content

Protect against porch pirates: The Courier Box

Necessity is the mother of innovation, and this is certainly the case for The Courier Box designer and developer Joanna Steel.


How did that happen: Customisable Products

  • News
  • March 14, 2019
  • Courtney Devereux
How did that happen: Customisable Products

According to the Forbes 2018 trend report consumers are increasingly searching for personalization of products, services, and experiences. From wallets, phone cases, apparel, pet accessories, plates, bedding, and even number plates, if it can be purchased, it can be monogrammed, personalized, and used as a display of our individualism.

Read more

Social scoreboard

Zavy and The Register have worked together to create a scoreboard that compares how the top 25 traditional media advertising spenders in New Zealand have performed on social media over the past 30 days, updated in real time.

Concept to closet
Business coverage of New Zealand Fashion Week.
Town centres
A positive retail environment over the past 12 ...
Amazon Arrival
Keeping up with all things Amazon as it ...
The Retail Yearbook 2017
As we battle our way through the busiest ...
Hospitality enhancing retail
Some think food and integrated hospitality offerings will ...
The future is bright
We spoke with four retailers in their twenties ...
Spotlight on signage
At first glance, the humble in-store sign might ...
Red Awards 2016
The Red Awards for retail interior design celebrate ...
Auckland Unitary Plan
Auckland is changing. The Unitary Plan will decide ...
How to open a store
Sarah Dunn considers what it would take to ...
All things to all people
Kiwi retailers share their omnichannel strategies.
Rising stars
Retail's top young achievers.
Delivering on your promises
The sale isn't over until your item is ...
Retail in heartland New Zealand
Retailers keep the regions pumping, but how strong ...
Women in retail help one another. We spoke ...
The changing face of retail
Shifting demographics are creating big changes in New ...
The retail yearbook
With the help of experts in the retail ...
Retail rogues
We put the spotlight on staff training. Jai ...
Here come the giants
Topshop has arrived in Auckland’s CBD, David Jones ...
Window shopping: A spotlight on social media
Sarah Dunn and Elly Strang look at how ...
From retail to e-tail
Ecommerce has become part of the way mainstream ...
Loyalty in the digital age
How are retailers maintaining loyalty? Sarah Dunn, Elly ...
The Innovators | In partnership with Spark Business
Technology is rapidly changing the retail industry as ...

Here we go again

  • Opinion
  • March 14, 2019
  • Satish Ranchhod
Here we go again

After losing some steam over 2018, another year of moderate growth in retail spending is on the cards for 2019.

Read more

Kathmandu security breach may have captured customer data

  • News
  • March 14, 2019
  • Radio New Zealand
Kathmandu security breach may have captured customer data

Outdoor clothing and equipment retailer Kathmandu is investigating a suspected customer data breach on its trading websites.

Read more

Briscoe Group notches another record annual result

  • News
  • March 14, 2019
  • Radio New Zealand
Briscoe Group notches another record annual result

Briscoe Group has reported a record full year profit after a surge of sales going into the Chirstmas shopping season.

Read more
Next page
Results for
About us.

The Register provides essential industry news and intelligence, updated daily. And the digital newsletter delivers the latest news to your inbox twice a week — for free!

©2009–2015 Tangible Media. All rights reserved.
Use of this site constitutes acceptance of our Privacy policy.

The Register

Content marketing/advertising? Email or call 022 639 3004

View Media Kit