Retail

PCI Council updates penetration testing guidance for merchants

By

A recent Verizon study found that regular testing of security systems was a compliance weak point for merchants.

Verizon: PCI requirement to test security systems a compliance weak point for orgs

Verizon: PCI requirement to test security systems a compliance weak point for orgs

By

The percentage of companies compliant with PCI DSS Requirement 11 dropped to 33 percent last year, a Verizon report found.

Study: Fraud losses drop by $2 billion in 2014

Study: Fraud losses drop by $2 billion in 2014

By

A new study from Javelin Strategy & Research has found that both the fraud rate and the amount of money lost to fraud decreased this year.

Attempts made to access Toys"R"Us reward program profiles

By

Unnamed attackers attempted to gain access to some Toys"R"Us reward program profile in January, prompting the company to send email notifications and request users change their passwords.

Report: Target hackers steal card data from another parking company

By

Brian Krebs uncovered that a third parking service has been targeted by the same cybercriminals that hit Target and Home Depot.

Judge gives Home Depot till July to respond to class-action lawsuit allegations

By

A Georgia judge ordered Home Depot respond to class-action lawsuit allegations surrounding the retailer's major data breach this past summer by July 2015.

Contending with online thieves and fraudsters

As we all gear up for the holidays with plans to purchase any number of items online, cyberthieves too are gearing up with more and more creative ways to steal money, credentials and critical data from any number of organizations.

Asprox spammers use timely, but malicious, emails to trick holiday shoppers

By

Phishing emails are made to look like order confirmations from major retailers, like Best Buy, Target and Walmart, security firm Malcovery warns.

Credit unions urge Congress to enforce security standards for retailers

By

The National Association of Federal Credit Unions is asking Congress to establish national data breach and notification standards for retailers.

DHS, FBI sound alert on holiday cyber scams

By

The FBI and Homeland Security's US-CERT team have both warned that online scams, taking advantage of the holiday shopping frenzy, will be plentiful this season.

Backoff infections spike 33 percent at Q4 start, more variants surface

By

Damballa observed the spike in infections, which followed a Backoff peak in Q3.

Report: Dutch gov't OKs Drinkman extradition to U.S.

By

Vladimir Drinkman, who was charged for his involvement in the Heartland breach, is currently in the Netherlands.

Affected by breaches, consumers ready for more intensive security measures

Affected by breaches, consumers ready for more intensive security measures

By

A new study found that consumers are becoming more aware of security procedures at retailers after breaches have dominated this year's news cycle.

New version of Backoff detected, malware variant dubbed 'ROM'

New version of Backoff detected, malware variant dubbed 'ROM'

By

Researchers at Fortinet detailed the new variant on Monday, and urged businesses to keep their AV up to date.

A balancing act: Apple technology

A balancing act: Apple technology

Apple's iPhone 6 and iOS 8 offer encryption for mobile users, but a focus on consumers can create security conundrums, reports Lee Sustar.

PCI publishes guidance on security awareness programs

PCI publishes guidance on security awareness programs

By

The guidance, developed by a PCI Special Interest Group, will help merchants educate staff on protecting cardholder data.

ADDING RELATIONSHIP MANAGEMENT TO IDENTITY: A must for Customer-Centric companies

We're in the age of the customer. Empowered buyers are demanding a new level of customer obsession, and bring-your-own-everything is accelerating.

Canadian launches $500m class action against Home Depot

By

A Canadian is leading a $500 million class-action lawsuit against Home Depot following its data breach in which up to 56 million US and Canadian credit cards were stolen.

Suspected POS hacker Seleznev faces slew of new charges

By

Roman Seleznev is now charged in a 40-count indictment brought by a federal grand jury in Seattle.

Cash is king...for now

Cash is king...for now

By

A slide of a card at a POS system sure is convenient, but given last year's Target data theft and recent headlines about the Home Depot breach, some are questioning the safety of transactions.

Addressing attacks on critical infrastructure

Just recently we witnessed the U.S. House of Representative pass two bills aimed at bolstering the security operations of the nation's critical infrastructure.

Cyber thieves are ready for the holiday shopping season: are you?

Retail organizations have long been the target of financially-motivated crime. According to Verizon, 92% of the retail breaches they've studied were committed by external actors.

PCI Council holds North America community meeting, new GM Orfei speaks

PCI Council holds North America community meeting, new GM Orfei speaks

By

The PCI Security Standards Council's new general manager Stephen Orfei spoke at the Florida community meeting.

Home Depot: breach risks 56M payment cards, 'unique' malware used

By

Home Depot confirmed that approximately 56 million payment cards may have been compromised as result of a malware attack.

eBay addresses XSS issue affecting auction page visitors

By

Due to the flaw, iPhone bidders were vulnerable to being redirected to a phishing page.

Researcher challenges reports that BlackPOS variant struck Home Depot

By

Nuix believes the malware found on Home Depot's systems belongs to a different threat family.

PCI Council updates skimming prevention guidance

PCI Council updates skimming prevention guidance

By

On Wednesday, PCI SSC updated its card skimming prevention guidance for the first time in five years.

BlackPOS malware that struck Target also linked to Home Depot breach, report says

BlackPOS malware that struck Target also linked to Home Depot breach, report says

By

The same malware that reportedly struck Target also hit Home Depot's POS systems, a new report from Brian Krebs reveals.

PCI Council urges retailers to defend against Backoff POS attacks

By

The warning comes soon after the Secret Service and DHS issues a warning on the threat.

Calif. passes law requiring smartphone kill switch technology

By

Starting July 2015, all smartphones sold in the state must come with the anti-theft technology.

Sign up to our newsletters

RECENT COMMENTS

FOLLOW US