Barnes & Nobile Says 63 PIN Pads Hacked Nationwide

[exfileme]

63 PIN pads at Barnes & Noble have been hacked to steal credit card information.

Barnes & Nobile Says 63 PIN Pads Hacked Nationwide : Read more

 

[alexmx]

Sounds more like an internal job than a hack to B&N servers

 

[frombehind]

Its really nice of them to come clean and not sweep this crap under the rug...

The federal government really needs to come down hard on people that do this kind of stuff, since cash is more or less becoming obsolete, and people are using electronic payments more and more, this stuff really needs to be as secure as it can be.

 

[sliem]

That picture is so old...

 

[ddpruitt]

A more important question is if the affected PIN pads are only at Barnes and Noble or if other retailers have compromised PIN pads. This could be much wider than one retailer.

I don't know about anyone else but I use these things all the time for groceries, hardware stores, gas, etc.

 

[mavroxur]

I'm curious as to how this was pulled off. I know pin pads / credit card terminals include several layers of security, from physical mechanisms such as firmware wipe / chip destruct from case switches to epoxy potted cipher chips and firmware chips with anti-probe mechanisms, to software mechanisms such as run time CRC checks to prevent memory address tampering, memory address randomization, etc. Someone knew their stuff to pull this off.

 

[bllue]

More reasons to pay cash

 

[Guest]

All other states don't read at all or read bible.

 

[bmerigan]

Maybe it was the installation contractor.
Seems to me it would have to be dismantled and modified offsite rather than while the staff are distracted for a few seconds.