I do not think that it is the vendors. But i believe the thieves are coming up with ways to circumvent bank security measures--and banks and consumers like us can't keep up.
In this case, there appeared to be malicious code injected onto MFS servers last year. It was detected rather quickly as far as these things go (it was in place around one month).
Thieves know that Point of Sale software is a goldmine of information. It is an arms race, and as any server administrator will tell you, server logs are chock full of entries from people across the world attempting to break into them. There are zero day exploits out there that a lot of us don't know anything about until someone finds a server has been compromised and the investigation begins. Patches are developed and sent, and the game continues. In many of these cases, the server admin has done everything possible in their power to secure their servers, yet due to an unknown exploit, they find their company on the front page of the newspapers.
Your desktop machine is also a rich target. There is a ton of malware out there that is designed solely for targeting a user's machine to steal any and all financial information. Some are designed as "root kits", which makes detection by anti-virus programs extremely difficult. There are some root kits that are so good at hiding on your machine, that specialized software is required to detect its presence.
Protecting yourself requires a multi-level defense strategy. Not only should you use a good anti-virus program, but there are plugins you can use with your browser that strengthens your security posture as you use the Internet. A good ad blocking plugin is a must IMO, as part of these security strategy. Yes, your machine can be nailed via advertising. In fact, this type of infection is on the rise.
Angler Takes Malvertising to New Heights
In this case, crooks are infecting machines with ransomware via advertising. (You all DO make backups on a regular basis, yes?)
