PICO and AirVend Physical Security Audit


This document will show you how to conduct a physical security inspection of your PICO Devices (PicoCooler and PicoVend) and AirVend market devices. Knowing that these devices are physically secure is important to ensure the safety of consumers and their data. Operators are encouraged to do a physical inspection of the market each time they restock the store.



Checking for Credit Card Skimmers

  1. Inspect the card reader. Does it look natural? Does it appear that it has been altered?

  2. Pull on the card slot. Be sure that no foreign device has been installed.

AirVend and PICO unit’s card readers are pictured below. If any additional hardware appears to be present, contact our support team for further investigation.


Card Skimmers

Most card skimmers are devices that are attached to the external components of a card reader. The best defense against such devices is a close review of the card reader as explained above. Below is an example of a device that attaches to the outside of a card reader.


With the advancement of technology, new card skimmers have been developed that are inserted inside card readers. These devices are slightly harder to detect, but with proper review of the card reader they can be spotted. When inspecting your market for such devices, thoroughly inspect the outside of the card reader and look inside the card slot. Below is an image of a recovered internal card skimmer.



Checking the Locks

Inspect all locks located on the cooler or vending machine. Do they look like they have been forced open? This would result in obvious damage to the locking mechanism.


Reviewing DVR Footage

Review the DVR footage. When an incident is reported, it is vital that the video footage be reviewed to verify the date and time the incident was reported or suspected to have occurred. If no DVR is in place, you (the operator of the kiosk) should contact the local company and request that this footage be reviewed, and the same process followed.

This is a manual process that the operator is responsible for since 365 Retail Markets does not have access into these camera systems. Physical evidence of device tampering is crucial to completing our Incident Response process as it can display criminal activity, device tampering, system malfunctions, power outages or application errors.


PICO Tamper Event

The PICO devices have a protection mechanism for physical tamper attack. Any penetration attempts on the device will trigger the security alarm. The device will switch to an inactive mode and lock itself immediately. In inactive mode. the device will forbid any operations and show a warning message on the screen.

When the device is locked in tampered status, it will have to pass security checks and maintenance before it can be returned to normal functions.


Environmental Factors

If the environment condition is outside of the ranges listed as below, a tamper event will be triggered:

  • Low/High Temperatures Monitor
  • -40 ±5 ºC to 120 ±5 ºC
  • Voltages Monitor
  • 2.2V to 4.0V