Companies are innovating all the time, which means new platforms and devices are constantly coming into play. These emerging technologies often generate, transmit and/or store vital business and customer data. At the same time the bad guys are also innovating. These hackers are organized, agile … Read more
Know Your Customer There’s an acronym we use in the payments industry: KYC. With KYC, which is Know Your Customer, we’re referring to ISOs’ and acquirers’ need to know the type of business each of their merchants conducts. If due diligence for KYC doesn’t take place, … Read more
The United States Computer Emergency Readiness Team (US-CERT) has issued an advisory warning of a new POS malware that, “at the time of discovery and analysis…had low to zero percent anti-virus detection rates, which means that fully updated anti-virus engines on fully patched computers could … Read more
ControlScan advises its customers and clients with eCommerce websites, or those which handle sensitive data, that a critical vulnerability has been discovered affecting the OpenSSL 1.0.1 and 1.0.2-beta implementation of the SSL protocol. The vulnerability is known as ‘Heartbleed,’ and should be seen as an … Read more
A security manager I was speaking with recently described some applicants for a Network Administrator position he was looking to fill. Most of them were well-qualified with backgrounds in IT and network management and had a long stream of credentials following their names. All excellent … Read more
It even appeared on TMZ.com; one of the world’s largest retailers had their website defaced so they were now selling a grill to cook babies. This was, of course, inappropriate and unacceptable for any retailer to host on their website, and most likely the reason … Read more