Posts

30,000 websites are hacked daily across the globe. And 64% of companies worldwide have experienced at least one cyber attack. Cyber criminals target a wide range of tech such as websites, mobile phones, and computers. Unsurprisingly, they’re also known to target EPoS systems

If a hacker were to gain access to your EPoS, it would give them access to all the information they need to clone cards, harming your business reputation and putting your staff and customers at risk. It’s vital to keep it secure. Here are six ways to increase your EPoS system’s security.

Keep everything updated

This means ensuring your system is up to date and all you have all the most recent patches. It’s easy to think “I’ll do that later”, but “later” might be too late. 

Since patch updates are announced publicly, the world knows the system has a vulnerability. To use a real example, the WannaCry attack that brought the NHS to its knees, costing just under £6 million, could have been prevented if they had installed the latest patch update.

Use end-to-end encryption 

With encryption tools, even if a cyber criminal steals card information from your EPoS, they won’t be able to make sense of it. Encryption tools disguise credit card information the moment the EPoS system receives it. It’s then encrypted again when that information is sent to the software’s server. 

Use two-factor authentication

99.9% of automated attacks are blocked when you use two-factor authentication. This adds another layer to your security, requiring a code sent to your email or phone. It’s much harder for cyber criminals to access this instant information.

But you shouldn’t rely on this alone. You should ensure all your passwords are complex and change them regularly. It’s recommended to change them every 60-90 days. But we like to err on the side of caution. Therefore, we recommend updating passwords every 30 days.

Never connect to Wi-Fi that isn’t your own

Connecting your EPoS to public Wi-Fi makes it so simple for a hacker to intercept. If possible, ensure your Wi-Fi is WPA3, as this is the most secure. If you’re able to take your EPoS out with you, say on an iPad to an external event, don’t feel you have to connect to anything. Find an option that can work offline as well as it does online.

Consult an expert

Regularly conducting checks of your EPoS is a great idea, but an expert always knows best. Look to seek advice from someone with a lot of experience with these system. They can regularly conduct vulnerability assessments on your EPoS to ensure it’s secure. 

Regularly backup your data 

The sad reality is you can never be completely protected from cyber criminals, so it’s important to have a back up plan. Backing up your data via the cloud ensures that if you do fall victim to an attack, you can get back up on your feet much quicker. 

The importance of ensuring you increase your EPoS system’s security cannot be understated. For the sake of protecting your customers, staff, and business, a secure EPoS should be your top priority. On the 9th of September at the Charity Retail Association Conference, we’ll be launching CHARiot Web – a secure, cloud-based EPoS system that helps keep you as secure as possible.

Ready to protect your business? If you have any questions about CHARiot Web, or if you have any general security questions, get in touch with us on 01204 706 000.

It’s no surprise that cybersecurity has rocketed up many companies’ list of priorities. The number of UK businesses who fell victim to a cyberattack has majorly increased, especially in the last year. And it’s not as if the bigger the business, the safer you are; phishing attacks worked 38% of the time in large businesses compared to 29% in SMEs.

The reason for the high number of cyberattacks? Our technology makes it too easy. If cybersecurity is at the top of your agenda, so should patch management. Every piece of current software and technology is constantly releasing new patches that add new features and bolster security. But if you aren’t staying on top of them, you are just leaving yourself open to exploitation. So how can patch management ensure you and your tech stay as safe as possible?

Why you need patch management

The most obvious reason for patch management is to keep your security up to date. Bad-faith actors will use whatever holes they can find to work their way into your system. It’s also why we would never recommend you use unsupported services or operating systems. Any breach will likely cost you a lot of money and a lot more reputation.

Beyond that, staying on top of your patches keeps your whole team more productive. As well as fixing any existing security issues, updates can make software more efficient, meaning it runs faster and crashes less. Your staff won’t have to worry about any of that slowing them down. How often has your computer frozen and sent you into a mad rage? We know it’s happened more than enough to us!

Due to the significant threat, it’s also often a requirement to stay safe. Depending on your industry, staying up to date means staying compliant. Noncompliance is a rocky road to penalties and lost business. If you have personal details for clients and they end up being compromised, you put them in danger and your business in hot water.

How to implement

We make it sound like a long process, but it doesn’t have to be. It might require more work at the start as you lay out a patch management policy, but then you can simply carry out regular scans to check for any vulnerabilities and new patches. Done right, you can push updates out to multiple devices at once, saving any need to go to individual devices.

If you want to be more thorough – which we always recommend for something as important as cybersecurity – you need to check the updates in a testing environment before pushing out. This ensures it won’t negatively affect you in any way. And when it’s all done, a final report detailing the process would help for any auditing in the future.

What’s important is you understand why you’re doing it. Make sure all the management and staff understand how it’s of benefit – potentially include it in any cybersecurity training you put your team through. Patch management can be a big undertaking for a team that’s already stretched thin, but there are companies and software available that can handle this vital task for you.

We offer a patch management service so you can be safe in the knowledge that your devices are as safe and secure as possible. This way, your IT team can focus on doing what they do best, and you don’t have to worry about vulnerabilities in your software. Protect your business today with Nisyst Cyber Security. For more information, get in touch on 01204 706000.