Russian Cybercrime Group Linked to Breach of Oracle Credit Card Sales System

Oracle’s point-of-sale system may have been breached by a Russian cybercrime organization, putting at risk a considerable amount of credit card numbers.

When Oracle detected the breach, it thought it was limited to a few computers and servers in its retail business but found that 700 systems were infected with malicious code, according to KrebsOnSecurity. The breach included Oracle’s MICROS division, which supports more than 330,000 cash registers globally.

Malware infected the MICROS customer support portal, which let the Carbanak Gang steal usernames and passwords when customers logged in, according to KrebsOnSecurity. The group has been linked to the theft of up to $1 billion from financial institutions around the world.

The scope of the damage isn’t clear. The breach may have allowed the group to upload malware on to point-of-sales systems, according to Wired.

Oracle acknowledged it had “detected and addressed malicious code in certain legacy MICROS systems” and clarified its corporate networks and other cloud offering were not impacted. All of its MICROS customers will have to change their passwords.