Article 4WTXX PoS malware skimmed convenience store customers’ card data for 8 months

PoS malware skimmed convenience store customers’ card data for 8 months

by
Dan Goodin
from Ars Technica - All content on (#4WTXX)
wawa-store-800x531.jpg

Enlarge (credit: Wawa)

US convenience store Wawa said on Thursday that it recently discovered malware that skimmed customers' payment card data at just about all of its 850 stores.

The infection began rolling out to the store's payment-processing system on March 4 and wasn't discovered until December 10, an advisory published on the company's website said. It took two more days for the malware to be fully contained. Most locations' point-of-sale systems were affected by April 22, 2019, although the advisory said some locations may not have been affected at all.

The malware collected payment card numbers, expiration dates, and cardholder names from payment cards used at "potentially all Wawa in-store payment terminals and fuel dispensers." The advisory didn't say how many customers or cards were affected. The malware didn't access debit card PINs, credit card CVV2 numbers, or driver license data used to verify age-restricted purchases. Information processed by in-store ATMs was also not affected. The company has hired an outside forensics firm to investigate the infection.

Read 4 remaining paragraphs | Comments

index?i=-KgwJa_Ur7o:-DHL5pwxA2w:V_sGLiPB index?i=-KgwJa_Ur7o:-DHL5pwxA2w:F7zBnMyn index?d=qj6IDK7rITs index?d=yIl2AUoC8zA
External Content
Source RSS or Atom Feed
Feed Location http://feeds.arstechnica.com/arstechnica/index
Feed Title Ars Technica - All content
Feed Link https://arstechnica.com/
Reply 0 comments