Oracle’s recent breach in its point of sale (PoS) division demonstrates the security flaw in supply chains of larger organisations, according to experts.
Oracle has asked Micros consumers to change passwords, along with passwords of Micros representatives, in order to access onsite systems.
The company confessed to discovering a breach within the Micros division. It also said, however, that it had resolved malware issues found in certain legacy systems.
Oracle defended the breach by adding that the corporate network, along with other services, were unaffected and that any payment card information is encrypted, when either stationery or in transit.
Head innovation officer from security company Cyberbit, Shai Gabay, said that the breach again highlights the fact that supply chains are a common attack route, especially as far as larger organisations are concerned.
He said:
“Large organisations are often required to support remote maintenance services, but we see that they lack sufficient mechanisms to control them.”
He said that it is typically an easier process to hack suppliers from supply chains initially, as they are traditionally small and not as well protected.
Gabay added:
“It is an easy gateway to enter into the network of larger, well-protected enterprises.”
His comments are supported by the 2013 Target attack, when the US retail giant was breached through one of its suppliers.
No matter where the vulnerabilities lie, it is important for organisations of all sizes to have a level of protection, which is why filling cyber security jobs is so important. Cyber professionals can help to find those vulnerabilities and react to any breach that manages to penetrate the company, via supply chains or elsewhere.
Send us your CV and have our recruiters match you to the ideal opportunities
Do you already have an account with us?
Log inWant to have an account with us?
RegisterWant to just send us your CV?
By submitting your registration and CV to us you are agreeing to join our database and to be contacted about relevant jobs industry communications. Please read our terms of business for more information.