Quote:

Originally Posted by tony286 I dont understand why this payment systems and company info are on the internet not on a intranet. I got to figure its cost, well now it will cost them big time.

They are not supposed to be. You cannot retain consumer credit card data, i.e.; full credit card numbers unless it is on a SQL (data) server that only accepts local connections and in a security cage per PCI standards and VISA Net requirements.

So none of this makes sense. I think that this ''Russian hacker k0d3k1dde" is a diversion. This was probably an inside job or some major slop in compliance to PCI standards.

*** reading further a POS malware? Inside job too allowing Internet access to a POS system seems incredibly stupid.