Don't Get Skimmed!

Skimming occurs when devices illegally installed on ATMs, point-of-sale (POS) terminals, or fuel pumps capture data or record cardholders’ PINs. Criminals use the data to create fake debit or credit cards and then steal from victims’ accounts. It is estimated that skimming costs financial institutions and consumers more than $1 billion each year.

Skimmer devices usually fit over the original card reader.
Some skimmers are inserted in the card reader, placed in the terminal, or situated along exposed cables.
Pinhole cameras installed on ATMs record a customer entering their PIN number
Keypad overlays record a customer’s keystrokes.
Skimming devices store data to be downloaded or wirelessly transferred later.

Why is Pin Pad Security Critical?

Customer data security is more critical than ever before. Nefarious actors are constantly devising new schemes to compromise sensitive information, putting both your customers and your business at risk.

Steps to Ensure Pin Pad and Store Security:

Implement P2PE (Point-to-Point Encryption) Solution:

Utilizing a P2PE solution is essential for safeguarding your store against full breaches. By encrypting card data from the moment it’s captured at the pin pad until it reaches the payment processor, you can significantly reduce the risk of unauthorized access. This also reduces or minimizes your PCI-scope, which can save you time and money in maintaining PCI compliance.

Check Your Pinpads Every Day: 

It doesn’t take long for a skimming device to be installed.  This can cost you time, money, and reputational damage.  Your staff should sweep your store every daya and check your pinpads for tampering.  Using the EasySweep skimmer detection tool from NCBP can help reduce the burden on your staff.*

Monitor External Areas:

Regularly monitor and secure external areas of your store, including parking lots and entrances, to deter potential threats and ensure the overall safety of your customers and their data.

Stay Vigilant Against Chip Risks:

Merchants must pay attention to chip risks, as they bear responsibility if vulnerabilities are exploited or if keys are compromised. Remaining proactive in securing chip technology is crucial in maintaining PCI compliance, and partnering with a trusted provider like NCBP can take care of this for you.

Educate Staff: 

Train your staff on best practices for pin pad security, including recognizing signs of tampering or suspicious activity. Creating a culture of awareness can help prevent breaches.


GET STARTED

* NCBP is committed to providing merchants easy to use tools and services to protect themselves and their customers.  We are actively involved in the Retail Solutions and cybersecurity spaces, and are constantly looking for solutions to ease this burden.  We would like to thank Target for their work and generosity with the patented EasySweep Payment Terminal Evaluator.  Full details are available at https://patents.google.com/patent/US11507762B2 and https://tech.target.com/blog/cybersecurity-easysweep.