Cybercriminals have gained access to dashboards used to remotely control thousands of Wiseasy credit card payment terminals, Tech Crunch reports.
Wiseasy is a popular manufacturer of Android-based payment terminals used in restaurants, hotels and retail outlets throughout the Asia-Pacific region.
Recently, the passwords used to access the Wiseasy cloud panels, including the administrator account, were found on the dark web.
Information security company Buguard said hackers gained control of two Wiseasy cloud-based toolbars. Even users of home computers are recommended to set up two-factor authentication to protect their accounts, but for some reason the popular payment system did not have it.
According to the information provided in the screenshots of the Wiseasy administrator account, the service can remotely manage payment terminals, has access to customer data, is able to add users, knows the names of Wi-Fi networks and open passwords of connected payment terminals. All this information could fall into the wrong hands.