|
Is Your Restaurant Vulnerable to a POS System Attack?
An Important Security Message from MICROS' Chief Information Security Officer, James Walsh
There are powerful new malware programs attacking merchants in all industries including the hospitality arena. The latest type of malware does not steal cardholder data from the POS application, but rather, from the operating system's volatile memory, which the POS application doesn't control.
Therefore, it doesn't matter which POS product or version is in use, as the data is not being taken from the POS application.
It is much more important to protect your payment processing network in order to prevent the attackers from gaining access and deploying malware tools like Dexter, the one that has been covered in recent news.
There have been numerous warnings about this type of attack over the last 3+ years by the PCI-SSC and Card Brands. Their recommended mitigation strategy is to prevent the attackers from gaining access to your network by complying with the PCI-DSS. MICROS has also issued warnings about this type of attack. You will still find these posted on our information security site, by clicking here.
Another very effective mitigation strategy is Point-To-Point-Encryption, (P2PE). As the cardholder data is strong-encrypted at the point of swipe, attackers using memory parsing malware would obtain only strong-encrypted data which is obviously harder for hackers to use easily. MICROS offers P2PE with the RES product called "Transaction Shield".
Our strong recommendation would be to both implement P2PE and comply with the most current PCI-DSS standards.
Please make sure you have a strong security plan in place for 2013 and have a safe and successful year!
|
|
|
Do You Have a Plan in Place to Keep Sensitive Data Secure?
Treat system security in your business as a top priority. There a few basic security elements that merchants can attend to that can reduce their probability of compromise considerably:
1. Deploy a properly configured stateful-inspection firewall.
2. Disable all remote access applications and utilities unless needed for a specific purpose.
3. Deploy a commercial anti-virus application with the latest updates.
4. Use only unique user ID's and strong passwords. Rotate passwords at least once every 90 days. The latest PA-DSS validated RES products from MICROS can be configured to systemically enforce these standards.
These 4 vulnerabilities account for more than 90% of merchant compromises.
Contact NCBP if you need help implementing your plan. |
|
Are You Offering Mobile and Online Ordering Yet?
 In today's competitive restaurant marketplace, an increased web presence is vital to success. With MICROS, it's easy and seamless to integrate online ordering within your restaurant. Increase sales and efficiency with the comprehensive MICROS webOrdering solution. MICROS's webOrdering links your restaurant to the Internet and orders placed from any online channel are sent to the restaurant and processed just like an order entered at a POS workstation.
WebOrdering from MICROS offers many of the advanced capabilities of online ordering including Delivery Area Configuration, Online Coupons and Promotions Handling, Order Customization, Email Order Confirmation and Receipt and comprehensive Reports and Analytics.
To explore online ordering options, call us today!
Dean Crotty, President
North Country Business Products
888-505-0540
info@ncbpinc.com
|
Video Tutorial: How to change the print class for menu items
Can't remember how to change the print class for menu items the MICROS RES 3700 POS System? This short video explains how to assign menu items to specific kitchen printer stations.
Are you aware that we offer manager and key operator training classes? Contact us for a training schedule or to set up an individual training session with one of our MICROS POS specialists.
|
