FBI Raid Chinese POS Terminal in Suspected Cyber Attack Scheme

  • By David Lukic
  • Dec 10, 2021
 The FBI and other federal agencies raided several Chinese POS terminals owned by PAX Technology in Florida on October 26, 2021. Independent cybersecurity expert Brian Krebs said security concerns spurred the investigation after an unknown U.S. payment processor noticed "unusual network packets" from the company's payment terminals.

PAX Technology, a division of China-based PAX Global Technology Ltd., processes millions of transactions in shops worldwide, and said there were no allegations of misconduct.

What Happened?

The FBI raid was linked to reports that PAX's systems could be involved in cyber attacks on US and EU organizations. Suspicions that their terminals were used as a staging point for hacking and collecting information prompted the raid.

Brian Krebs told BBC News that a major US payment processor made claims about PAX terminals.

The US payment processor alleged that
“the Pax terminals were used both as a malware ‘dropper’ - a repository for malicious files - and as ‘command-and-control’ locations for conducting attacks and collecting information.”
The source also accused the UK security service MI5 of involvement in the investigation.

An FBI official told BBC News it had searched three locations in Jacksonville, Florida.

What is the FBI claiming?

The FBI, in partnership with Homeland Security Investigations, Customs and Border Protection, the Department of Commerce and Naval Criminal Investigative Services, claims a court-approved search was carried out with the support of the Jacksonville Sheriff's Office to support a federal investigation.

According to the Federal Bureau of Investigation, the investigation is still active and ongoing.
POS Terminal Cyber Attack

How did PAX Technology respond?

A senior executive overseeing security at PAX Technology has resigned after the raids by US investigators.

According to her LinkedIn profile, Patty Walters, former senior vice president of security and services, worked at payment terminals in Jacksonville, Florida for nearly three years. She confirmed her resignation to Bloomberg but declined to comment on the circumstances of her resignation.

Meanwhile, a spokesperson for the company confirmed in a statement that it received a sudden visit from the FBI and other agencies, but was unaware of any illegal conduct by it or its employees, and sought legal advice to learn more about the investigation.

Pax UK's letter to customers obtained BBC News says they are currently dealing with no security problems and can confirm there have been no security breaches or compromised data.
"No confidential customer information or transaction data was sent from any Pax device sold in the US or UK,"
it said.

The company in a statement said no allegation of wrongdoing had been made.
"Pax Technology takes security seriously. As always, Pax Technology is actively monitoring its environment for possible threats. We remain committed to providing secure and quality software systems and solutions. Pax Technology is not aware of any illegal conduct by it or its employees, and is in the process of engaging counsel to learn more about the events that led to the investigation."
Pax Technology Corporate in Hong Kong also revealed they would release a global response by the end of the week.
About the Author
IDStrong Logo

Related Articles

Instagram Vulnerability Allowed Hackers Access to Control Your Phone

Security experts Check Point Research discovered a critical vulnerability while examining Instagra ... Read More

Alien Malware Infects More than 226 Mobile Apps and Steals Bank Data

As reported on September 24, 2020, by ZDNet and ThreatPost, a new strain of malware named “A ... Read More

Universal Health Systems Hit by Ransomware Attack

Universal Health Systems (UHS), a Fortune 500 company owning more than 400 hospitals across the co ... Read More

Exchange Server Bug Exposes a Big Risk to Hackers

Months after Microsoft released a patch to fix a serious flaw in MS Exchange Server, more than 61% ... Read More

Clients’ Bank Data Exposed in Blackbaud Ransomware Attack

Blackbaud software was victim to a ransomware attack last May, and new information suggests that c ... Read More

Latest Articles

What is an Incident Response?

What is an Incident Response?

What is an Incident Response? After a bank heist, the work begins with specialized teams and plans engaged, allowing for analysis of the event, and from this analysis, the bank can prepare a response to the incident.

What is a Social Engineering Attack? Techniques and Ways to Prevent

What is a Social Engineering Attack? Techniques and Ways to Prevent

Everyone has received a spam text or email at some point. Their hallmarks are widely known; they often include poor or strange grammar, suspicious links, suggested connections with companies or people, or random individuals asking for help in some capacity.

Side Channel Attack: Everything You Need To Know

Side Channel Attack: Everything You Need To Know

Every year, millions of people get victimized by data breaches. Criminals steal their data from the network environments of organizations, vendors, providers, institutions, and governments; with ever-increasing frequency, cybercriminals are making big moves in the cyber wars—and making billions of dollars. 

Featured Articles

How to Buy a House with Bad Credit

How to Buy a House with Bad Credit

Buying your own home is the American Dream, but it might seem out of reach to those with bad credit. However, the good news is, if your credit is less than perfect, you do still have options and in most cases, can still buy a home.

How Secure Is Your Password? Tips to Improve Your Password Security

How Secure Is Your Password? Tips to Improve Your Password Security

Any good IT article on computers and network security will address the importance of strong, secure passwords. However, the challenge of good passwords is that most people have a hard time remembering them, so they use simple or obvious ones that pose a security risk.

Top 10 Senior Scams and How to Prevent Them

Top 10 Senior Scams and How to Prevent Them

Senior scams are becoming a major epidemic for two reasons. First, seniors often have a lot of money in the bank from a life of working hard and saving.

Free Identity Exposure Scan
Instantly and Securely Check if Your Personal Information is Exposed on the Dark Web or Sold by Data Brokers
Please enter first name
Please enter last name
Please select a state
Close
Free Identity Threat Scan
Instantly Check if Your Personal Information is Exposed
All fields below are required
Please enter first name
Please enter last name
Please enter a city
Please select a state
Please enter an age
Please enter an email address
Close