Community

Join the Community

22,053
Expert opinions
43,987
Total members
381
New members (last 30 days)
184
New opinions (last 30 days)
28,690
Total comments
Join Sign in

Waking up to wireless

  0 2 comments
Paul Penrose
Paul Penrose
Head of Research
Finextra
Location
London
Followers
11
Opinions
307
Unfollow
The WSJ has reported that the hackers who made off with the credit and debit card details of 45 million shoppers at TJX, initially breached the firm’s perimeter defences through an insecure wireless network. TJX has yet to confirm the report, but according to the WSJ, opportunistic hackers used a laptop and an antenna to intercept data moving wirelessly between hand-held price checking units and store computers and cash registers at a Marshall’s clothing store in Minnesota. The data they got from this enabled them to crash the central database of parent company TJX.

It seems that the compromised wireless network was ‘protected’ using WEP (Wired Equivalent Privacy) encryption, one of the weakest forms of Wi-Fi security that can be cracked in as little as three seconds.

Given the proliferation of wireless access points to financial institutions, it might be an appropriate moment to dust off those old WiFi security policies and triple-check defences. A break-in on the TJX scale would be enough to finish off any bank.

External

This content is provided by an external author without editing by Finextra. It expresses the views and opinions of the author.

4100
 

Share

 
 
 
 
 

Channels

/security /retail banking

Comments: (2)

A Finextra member 

A scary item here on The Register about how WEP is hackable in around two minutes. Oh dear.

Elton Cane

Elton Cane Digital product delivery at News Corp Australia

2 minutes or 3 seconds -- either way, it's a short enough time that someone could sit with their laptop within range of your network and compromise the security without raising suspicion. All security-conscious organisations with wireless networks should be using WPA encryption with a RADIUS server.

Paul Penrose
Paul Penrose
Head of Research
Finextra
Member since
06 Oct 2006
Location
London
Followers
11
Following
3
Opinions
307
Unfollow

ANZ and Visa lose the plot

Don't give up the day job...ever

Now we are ten

Finextra's Best of the Web

The ATM was the last great financial innovation

See all Opinions from Paul

More expert opinions

Vishnu Prasad R

Vishnu Prasad R Lead Enterprise Architect at Tata Consultancy Services

Greening the Blueprint: Transforming Enterprise Architecture for a Sustainable Future

2

Anders Olofsson

Anders Olofsson Payment Oracle at FintechCore

Where central banks are inviting fraudster

Mathias Wikstrom

Mathias Wikstrom CEO and Co-founder at Doconomy

How banks can drive financial and environmental transformation

Ivo Gueorguiev

Ivo Gueorguiev Co-founder at Paynetics

Revitalising SaaS: The impact of embedded finance

See all opinions

External

This content is provided by an external author without editing by Finextra. It expresses the views and opinions of the author.

Join the Community

22,053
Expert opinions
43,987
Total members
381
New members (last 30 days)
184
New opinions (last 30 days)
28,690
Total comments
Join Sign in

Trending

Kathiravan Rajendran

Kathiravan Rajendran Associate Director of Marketing Operations at Macro Global

Is a Seamless Cross-Border Payment Future Possible?

Vitaliy Shtyrkin

Vitaliy Shtyrkin Chief Product Officer at B2BINPAY

Crypto Commission Models Redefined: Game Rules Change for Payment Platforms

Kunal Jhunjhunwala

Kunal Jhunjhunwala Founder at airpay payment services

How Cross-Border Payment Platforms Contribute to India's Global Trade Ambitions

Shiv Nanda

Shiv Nanda Content Strategist at https://www.financialexpress.com/

Unlocking the Potential: Exploring Property for Investment in Thailand and its Impact on Investment

Now Hiring

All companies

Welcome to Finextra. We use cookies to help us to deliver our services. You may change your preferences at our Cookie Centre.

Please read our Privacy Policy.

Accept