Self-checkout registers are all the rage in today’s commercial landscape, with grocery stores, gas stations, and big box conglomerates adopting the technology to meet consumer demand. But with this extra convenience comes the spread of a lurking danger: credit card skimmers.
Credit card skimmers involve malicious tools designed to illegally capture and record private information, including account numbers and PINs. Some skimmers use hardware installed discreetly on ATMs, gas pumps, and point-of-sale terminals, while others deploy malicious software to infiltrate e-commerce sites and try to steal passwords.
This silent threat has been around for years, with spikes typically reported around the holiday season. But the sophistication of card skimming is spreading, and as criminals continue to devise new ways to intercept sensitive data, these tactics are moving from traditional areas of usage to newly emergent self-pay kiosks. This serves as a stark reminder of the need for cybersecurity vigilance and proactive protection.
Between 2021 and 2022, incidents of credit card skimming grew more than 300%, according to the data analytics company FICO. More than 3,000 unique financial institutions and 160,000 individual credit cards were impacted in 2023 when reports emerged that Big Y, a major supermarket chain in New England, had fallen victim to a widespread credit card skimming operation that compromised thousands of customer accounts.
The skimmers, discreetly attached to point-of-sale terminals, went undetected for months, resulting in substantial financial losses and irreparable damage to the company’s reputation. In the first few months of 2024, similar types of skimmers have been found at grocery stores in New York, Washington, D.C., New Hampshire, and other Eastern Seaboard states.
This matches a steady increase over the years in online skimmers, which focus on the theft of both credit card numbers and passwords. Hackers employ a variety of techniques, including customized pop-ups, keylogging malware, and brute-force attacks, to try and obtain login credentials and access sensitive information. Smaller online merchants are particularly vulnerable, as outdated content management systems (CMS) and their associated plugins can be easily exploited.
While the threat of credit card skimmers and password theft may seem daunting, practical steps can be taken to mitigate risk and safeguard sensitive information for both businesses and consumers. Here are a few strategies that CMIT Solutions recommends:
Credit card skimmers and password theft pose significant risks to both businesses and consumers. But by following the steps outlined above, individuals and organizations can fortify their defenses against these silent threats.
At CMIT Solutions, we understand the risks and benefits of digital commerce and payment convenience. We also know how to spot threats like credit card skimmers and protect both businesses and consumers from this growing threat.
We keep up with the evolving cyber landscape and position our clients for continued success, no matter what payment method or e-commerce tools they use. If you need help enhancing your cybersecurity or better understanding today’s issues, contact CMIT Solutions today.
Local boy with autism is spreading holiday cheer in a big way
Nonprofit named recipient for annual donation campaign
Denise Cherry-Russell, a Kenosha resident and proud veteran, won the "Win Your Wish List" Sweepstakes
Froedtert Pleasant Prairie Hospital is proud to welcome a new cardiothoracic surgeon to their world-class…
Unlock productivity and security with trusted IT guidance
An adorable 1 ½-year-old pup looking for a loving home
This website uses cookies.