Image source, Getty Images

FBI, US and other agencies searched Florida residences used by Pax Technology, a Chinese payment-terminal provider.

According to the FBI, the search was “in support of a federal probe”.

US media reported that it was due to security concerns over Pax Technology products.

According to the company, no wrongdoing was claimed. It stated that Pax Technology took security seriously.

Pax Technology continues to monitor its environment in order to identify potential threats.

We are committed to providing high-quality software solutions and systems that provide security and reliability.

Pax Technology has not been notified of any illegal conduct or employees by them and they are in process of engaging counsel in order to find out more information about those events.

Pax was founded in 2001 and has shipped over 57,000,000 terminals to 120 countries.

Pax technology can be found in large numbers throughout the UK. The company’s blog notes that Prime Minister Boris Johnson made a donation through one of their terminals.

BBC News received a statement from the FBI confirming that they had searched three Jacksonville buildings.

The FBI Jacksonville Division, along with Homeland Security Investigations Customs and Border Protection and Naval Criminal Investigation Services and supported by the Jacksonville Sheriff’s Office carried out a court-authorized look in support of a federal probe.”

“The investigation continues and is active. At this point, no further information can be confirmed.”

Pax Global Technology’s share price fell 43% Wednesday in Hong Kong after the news.

BBC News obtained a letter from the British company to UK customers. It stated: “In sum, there are not security issues.

“Pax UK confirms that there has been no breach of security, data compromises or risk of compromise.

“No transaction or confidential information were sent by any Pax devices sold in the US and UK”.

Pax Technology Corporate, Hong Kong, said it would release a global response “by the end of the week”.

Technology journalist Brian Krebs said a trusted source of his had alleged a major US payment processor had claimed “that the Pax terminals were being used both as a malware ‘dropper’ – a repository for malicious files – and as ‘command-and-control’ locations for staging attacks and collecting information”.

According to the source, MI5 from the UK was implicated in this investigation.

BBC News was unable to confirm these claims.

A letter was sent to UK customers stating that “MI5 had not been in communication with anybody at Pax”.

In a “frequently-asked-questions” (FAQ) document accompanying the letter, the company added: “There are no known or reported vulnerabilities in Pax terminals.”

BBC News was informed by the National Cyber Security Centre that it had been made aware of these reports and has been closely working with partners to address them.

Worldpay, an important payments-processing firm, started removing Pax Terminals earlier in the month. Bloomberg News first reported this move.

FIS reported that the company had stopped using Pax Point-of-Sale (POS), devices “because it didn’t receive satisfactory answers by Pax about its POS device connecting to websites that were not listed in their provided documentation”.

However, it did not show that any data transmitted through Pax POS devices had been compromised.

However, the company refused to provide further information.

It is not clear if FBI is investigating the issue that caused Worldpay to pull the terminals.

However, the Pax UK customer letter stated that it had to do with FIS/Worldpay.

The FAQ stated that concerns about security are rooted in misunderstandings of Android-based technology.

“Enhanced functions require greater connectivity to more networks. This could lead to misinformation that Android-based devices can be less secure.”

Source: BBC.com

Share Your Comment Below

[gs-fb-comments]

LEAVE A REPLY

Please enter your comment!
Please enter your name here