The Denver-based Service Systems Associates, a third-party operator of concessions and retail services, is investigating a data security breach that took place in gift shops at nine U.S. zoos, including at the Detroit Zoo.

At issue are purchases made at the animal parks between March 23 and June 25. Debit and credit card information, including customer names, expiration dates and three-digit CVV security numbers, was potentially compromised.

The Detroit Zoological Society revealed in a press release the detection of malware in SSA's software. Upon learning of the breach, SSA installed a separate credit card processing system at its retail outlets. SSA is working with an independent technology forensic expert to study the incident and prevent further issues.

“We are obviously concerned that the vendor's system was compromised,” Gerry VanAcker, DZS' chief operating officer, said in a statement. “Transactions made since June 26 are not affected by the previous breach, and it is safe to use a credit or debit card at SSA's retail locations.”

Remote access attacks against smaller businesses are a mounting menace, according to a cybersecurity alert released by the Financial Services Information Sharing and Analysis Center along with Visa, the U.S. Secret Service and the Retail Cyber Intelligence Sharing Center, which provides threat intelligence for retailers.

Particularly threatening is Backoff, also referred to as ROM malware, which the Secret Service said infected at least 1,000 businesses including Sally Beauty Supply, Staples, Home Depot and White Lodging Services.

Backoff malware steals data by “sniffing” the traffic that flows on a network and identifies card data passed between point-of-sale terminals. The malware, fine-tuned with upgrades, can encrypt connections between command-and-control servers managed by attackers and infected systems. The changes make the malware difficult to detect or eradiate.

“If businesses had properly configured firewalls, Backoff would be blocked before any credit card information is lost,” Kevin Watson, CEO for the Houston-based Netsurion, a security company that protects small business' payments and data, said. “This can happen to any merchant. It's easy to conclude that their firewalls are either limited in what they could prevent, or are not configured properly.”

Watson noted that while investigating the rash of breaches caused by Backoff, the DHS issued a recommendation that includes firewalls and network segmentation.

Watson offered a few steps retailers, restaurants and other hospitality businesses can take to secure customer data: Protect incoming Internet traffic, control outbound Internet traffic, protect on-premise Wi-Fi, use two-factor authentication, update anti-malware software and patch all operating systems as security enhancements are released.

Complete your profile to continue reading and get FREE access to CUTimes.com, part of your ALM digital membership.

Your access to unlimited CUTimes.com content isn’t changing.
Once you are an ALM digital member, you’ll receive:

  • Breaking credit union news and analysis, on-site and via our newsletters and custom alerts
  • Weekly Shared Accounts podcast featuring exclusive interviews with industry leaders
  • Educational webcasts, white papers, and ebooks from industry thought leaders
  • Critical coverage of the commercial real estate and financial advisory markets on our other ALM sites, GlobeSt.com and ThinkAdvisor.com
NOT FOR REPRINT

© 2024 ALM Global, LLC, All Rights Reserved. Request academic re-use from www.copyright.com. All other uses, submit a request to [email protected]. For more information visit Asset & Logo Licensing.

Roy Urrico

Roy W. Urrico specializes in articles about financial technology and services for Credit Union Times, as well as ghostwriting, copywriting, and case studies. Also: writer/editor of a semi-annual newsletter for Association for Financial Technology since 1997 and history projects funded by the U.S Interior Department, National Park Service and Warren County (N.Y.).