Point-of-sale terminal vendors Verifone and Ingenico have issued mitigations after researchers found the devices use default passwords. The primary issue is that they ship with default manufacturer passwords which a Google search can easily reveal. PoS terminals are devices that read payment cards (such as credit or debit cards) These devices are widely used by retailers worldwide. The issues have been disclosed to the vendors and since patched, open several popular devices to a variety of cyberattacks. Researchers: These PoS terminal weaknesses enable an attacker to send arbitrary packets, clone cards, clone terminals, and install persistent malware.
Source: https://threatpost.com/security-issues-pos-terminals-fraud/162210/