Slashdot Mirror

← Back to Stories (view on slashdot.org)

Point-of-Sale System Bought On eBay Yields Treasure Trove of Private Data

Posted by Soulskill on Friday July 18, 2014 @06:05AM from the low-hanging-fruit dept.

jfruh writes: Point-of-sale systems aren't cheap, so it's not unusual for smaller merchants to buy used terminals second-hand. An HP security researcher bought one such unit on eBay to see what a used POS system will get you, and what he found was disturbing: default passwords, a security flaw, and names, addresses, and social security numbers of employees of the terminal's previous owner.

1 of 68 comments (clear)

Min score:

Reason:

Sort:

Default Passwords? by mythosaz · 2014-07-18 06:12 · Score: 4, Funny

It's hard to imagine that used equipment was sold with the default password...
I always include employee data, but I make the new purchaser guess my password.