IT Security Takeaways from the Wiseasy Hack

2022-09-22 13:12

Although Wiseasy might not be well known in North America, their Android-based payment terminals are widely used in the Asia Pacific region and hackers managed to steal passwords for 140,000 payment terminals.

Top Lessons Learned from the Wiseasy Hack 1 - Transparency isn't always the best policy.

While it is easy to simply dismiss the Wiseasy hack as stemming from an unavoidable malware infection, the truth is that Wiseasy made several mistakes that allowed the hack to succeed.

A second mistake that likely helped the hack to succeed was that Wiseasy did not require multifactor authentication to be used when accessing the dashboard.

Finally, the biggest mistake made in the Wiseasy hack was that the company seemingly did not know that its accounts had been compromised until they were contacted by Buguard.

The Wiseasy hack underscores the importance of adhering to long established security best practices such as requiring multifactor authentication and using dedicated management workstations for privileged operations.

News URL

https://thehackernews.com/2022/09/it-security-takeaways-from-wiseasy-hack.html

#hack #security