Oracle's Micros POS system exposes high-risk vulnerabilities. Hackers can download all the company's business data and microspos
Enterprises have always attached great importance to the management of their own systems. In addition to a powerful security protection system, the systems used also require excellent security technologies, recently, foreign media reported that the Point-of-Sale System of Oracle Micros has been exposed to high-risk vulnerabilities.
It is reported that once the vulnerability is successfully infiltrated by hackers, hackers can download all the business data stored by the company. This is a terrible thing for enterprises. This vulnerability was first discovered by ERPScan security researchers. It allows attackers to access and read all the data of the POS system without authentication, attackers can access vulnerable devices to read local files and obtain user names and passwords to gain full access to the database.
Security researchers say these vulnerabilities can be easily exploited by people with conditional attacks on micro-POS Terminal devices, such as company employees. In addition, if you want to prevent the vulnerability from being exploited, you can refer to the following points: attackers can scan the network to find vulnerable devices; if the devices and machines around the store are connected over Ethernet, attackers can easily intrude into the store.
Oracle said it had fixed the vulnerability earlier this month, but said it was highly responsible and harmful. In fact, POS system devices are vulnerable to attacks. At the beginning of the year, Forever 21's payment terminal was installed with malware, so that thousands of customers were at risk of credit card fraud, it lasted 6 months.