With breaches occurring more frequently than ever before, security solution providers are tasked with keeping retailers and other multi-site organizations safe and secure. To address this issue, we worked with Derek Brink at the Aberdeen Group on a paper about security and PCI-DSS compliance in the retail industry in response to the heightened number of security breaches. Inside the report titled Simplifying IT Security and PCI DSS Compliance in Retail, Hospitality and other Multi-Site, Remote Store Scenarios, are case studies of recent breaches, an explanation of PCI-DSS requirements, and how Cybera is a turn-key solution to such malevolent and common attacks. Below is an excerpt from the report: Continue reading →
Posted in Channel, General security, PCI Compliance, Retail
|
Tagged IT Security, Market Alert, PCI, PCI DSS, Report, Research, retail, security, White Paper
|
Me with Nicoleta
Working at a company that takes interest in your own passions is hard to come by. For the past seven years, I have served as Corporate Counsel for Cybera, and in my time here Cybera has played a huge role in my five mission trips to Moldova. Every year, as a board member for Justice and Mercy International, Inc. , I take bi-annual trips to the poverty-stricken state. With the support of Cybera and many locals, we are able to provide children in nine orphanages with gifts and necessities. Continue reading →
Everything has been “go go go” here at Cybera since we returned from the RSA Conference a few weeks ago. The conference is a pivotal one in the security industry and it attracts the best and brightest.
The Cybera Booth at RSA
The RSA Conference is BACK. I mean it’s really back. I have not seen any official stats to confirm this, but it certainly felt like attendance was up. Booths seemed bigger and more elaborate than in the past couple of years. I also learned that the event is continuing to grow. Exhibit space is selling out more quickly, prices are going up (great!), and I even heard that they’re expanding the conference’s physical space. Continue reading →
Years ago, having security and maintaining compliance meant cobbling together one-off point security solutions to create an entire system. It was difficult for multi-site businesses to easily manage and deploy all of the services to be fully secure, such as managed firewall, intrusion detection and prevention, event management, and more. The constant upgrades needed by all of these systems to remain compliant were costly and time consuming. They left merchants and retailers vulnerable to the fast-moving security threats, which in turn resulted in business closures or heavy fines. Many retailers remember the mad scramble to get security solutions in place to meet compliance deadlines and pass mandatory audits. At that point in time, having security that achieved PCI compliance was in high demand within retail, and knowing where and how to get it was a question that all merchants asked. Bottom line: The past of PCI compliance was that it was top of the mind and all the rage for retailers. Continue reading →
Wired magazine recently released a story about a small Utah restaurant standing up to “the industry giant.” The tale of Cisero’s Ristorante and the Payment Card Industry (PCI) is a classic story of David vs. Goliath. It’s about the small shop that is standing up for itself and challenging the PCI machine; that giant that dominates the industry. Many merchants and retailers will be waiting with baited breath on the outcome of this case and the precedence it will help shape. The ruling may ultimately change the way PCI DSS is structured, and here’s why. Continue reading →
We had a great time at NRF this year! Attendance was up from previous years and after two slow years in retail, everyone seemed to be in high spirits. Along with promising conversations with prospective customers and potential partners, the content of the conference was quite impressive. It is apparent that technology is rapidly evolving in the space of retail. Continue reading →
In a recent Verizon Report, studies found that only 21 percent of companies were fully compliant with PCI Data Security Standards (DSS) at the time of their Initial Report On Compliance (IROC). While this number seems low and even somewhat troubling, it’s also understandable. We’re in communication with companies as they evaluate PCI security options on a daily basis. I’ve come to realize that that many companies struggle to PCI-DSS from the right perspective. Focus is all too often placed on simply achieving compliance at a point in time rather creating a secure environment that maintains compliance over time.
Continue reading →
It goes without saying that PCI Data Security Standards (DSS) are complex. While the standards are required by all major credit card companies, there are many businesses that struggle with the guidelines. As I’ve mentioned before, we have actually built a business in helping retailers understand and achieve PCI compliance, and in so doing have become the experts on the rules and regulations.
Continue reading →
“Debit or credit?” Seems like such a trivial question when you think about it. After all, it’s my money regardless of which account I am really using. For those of us in the security industry, we know there is a huge difference, and that there are security implications that consumers should contemplate when purchasing goods with either debit or credit.
Continue reading →
Last week, news broke in California that customer data from a chain of nearly two dozen Lucky and Save Mart supermarkets had been compromised. The credit card thefts were perpetrated using card skimmer technology at the self-checkout POS systems, affecting more than 1,000 San Francisco Bay Area customers. While there are numerous issues that come to mind when reading about the security breach and thefts, including what went wrong, how this happened and who did it, another topic that came to mind was the overall impact it is going to have on supermarket chains as a whole.
Continue reading →
RSS Feed