Does PCI Compliance Equal Security? [Video]

September 22, 2015 • Published Categories PCI 101Tags , ,

Companies are innovating all the time, which means new platforms and devices are constantly coming into play. These emerging technologies often generate, transmit and/or store vital business and customer data. At the same time the bad guys are also innovating. These hackers are organized, agile … Read more

Merchants: Know Your Service Providers!

August 7, 2014 • Published Categories PCI 101Tags , , , , , , , , ,
Know your service provider

Know Your Customer There’s an acronym we use in the payments industry: KYC.  With KYC, which is Know Your Customer, we’re referring to ISOs’ and acquirers’ need to know the type of business each of their merchants conducts. If due diligence for KYC doesn’t take place, … Read more

New “Backoff” Point-of-Sale Malware Alert

July 31, 2014 • Published Categories Industry TopicsTags , , , , , ,
Remote security

The United States Computer Emergency Readiness Team (US-CERT) has issued an advisory warning of a new POS malware that, “at the time of discovery and analysis…had low to zero percent anti-virus detection rates, which means that fully updated anti-virus engines on fully patched computers could … Read more

OpenSSL ‘Heartbleed’ Vulnerability Advisory

April 9, 2014 • Published Categories Industry TopicsTags , , ,

ControlScan advises its customers and clients with eCommerce websites, or those which handle sensitive data, that a critical vulnerability has been discovered affecting the OpenSSL 1.0.1 and 1.0.2-beta implementation of the SSL protocol. The vulnerability is known as ‘Heartbleed,’ and should be seen as an … Read more

Attackers’ Tools Work Day and Night: Who Can Sleep?

June 2, 2012 • Published Categories Archive, Best PracticesTags , , , , , , , , , ,

A security manager I was speaking with recently described some applicants for a Network Administrator position he was looking to fill. Most of them were well-qualified with backgrounds in IT and network management and had a long stream of credentials following their names. All excellent … Read more

Making Headlines for the Wrong Reason… Don’t Let it Happen to You.

May 30, 2012 • Published Categories Archive, Best PracticesTags , , , , , , , , ,

It even appeared on; one of the world’s largest retailers had their website defaced so they were now selling a grill to cook babies. This was, of course, inappropriate and unacceptable for any retailer to host on their website, and most likely the reason … Read more