"As with all security loopholes, there are things businesses can do to thwart POS malware infections. Implementing a strict password policy tops the list, followed by installing software updates promptly — no major surprises there. They also suggest companies use network defense products, firewalls, and whitelisting to keep intruders out."
I have an idea, how about securing your f***ing VNC and RDP? Neither of which should be exposed to the open Internet!!