PCI Council Publishes Revision to PCI Data Security Standard
PCI Security Council
April 15, 2015
Today, the PCI Security Standards Council (PCI SSC) published PCI Data Security Standard (PCI DSS) Version 3.1 and supporting guidance. The revision includes minor updates and clarifications, and addresses vulnerabilities within the Secure Sockets Layer (SSL) encryption protocol that can put payment data at risk. Available now on the PCI SSC website, version 3.1 is effective immediately. PCI DSS Version 3.0 will be retired on 30 June 2015.
Keeping Small Businesses’ Networks Current and Secure
March 27, 2015
The technology that enables our businesses evolves so often that it is seemingly obsolete just when you think you have it deployed and operating properly. But keeping your technology current and taking advantage of innovations and advances, especially as an SMB, is a "must have" to remain competitive in a digital age. With all this new technology promising immediate and dramatic results, one aspect that can easily be overlooked is keeping the core network current and secure.
Premera Breach Emphasizes Risk to Holders of Medical Records and the Importance of Network Security
March 27, 2015
The recently announced breach of Premera, following so closely on the heels of Anthem, should set off alarm bells to other organizations in the healthcare industry, as it is an unfortunate likelihood that we will soon hear of other compromised healthcare companies. In both of these cases, the actual breach took place long before it was discovered, meaning every other healthcare company should be actively working to ensure their network is secure.
Dont Assume Youre Too Small to Attract Cybercrime
IT Business Net
April 20, 2015
Contrary to many people's assumptions, you don't need to be a multi-million dollar business to be vulnerable to a cyber attack; many small- and medium-size businesses represent an easy target to would-be criminals and often have direct connections (as subcontractors) to the networks of larger business partners.
CareFirst Data Breach Impacts 1.1 Million
May, 20, 2015
Healthcare insurer CareFirst BlueCross Blue Shield confirmed today that it was the victim of a data breach last June that impacts 1.1 million people. According to information from CareFirst, the attackers gained limited access to a single database in June 2014.
3 Critical Takeaways From The Damaging CareFirst Hack That Exposed Millions
May 25, 2015
On Wednesday, District-based not-for-profit insurer CareFirst BlueCross BlueShield announced it had been hacked in June 2014. The data breach meant that the personal information of about 1.1 million customers — including birth dates, names, email addresses and subscriber information — was compromised. CareFirst becomes the third major health insurer to disclose a breach, and that is by no means a coincidence.
Linux/Moose Malware Wreaks Havoc on Social Networks
May 27, 2015
Internet security researchers at Eset on Tuesday published a security research paper on Linux/Moose, a major threat to social networks that turns routers into conduits for grabbing users' log-in credentials, employing them for network fraud and to further spread malware to client devices that connect through them to the Internet.
Sally Beauty confirms malware on POS systems
May 29, 2015
After confirming earlier this month that an illegal intrusion into its payment card systems had occurred, Texas-based international beauty supplies retailer Sally Beauty announced on Thursday that malware was deployed on some of its point-of-sale (POS) systems at varying times between March 6 and April 17.
PCI Addresses Payment Terminal Security
Credit Union Times
June 04, 2015
The Wakefield, Mass.-based PCI Security Standards Council (PCI SSC) revised its Payment Application Data Security Standard (PA-DSS) to address vulnerabilities in encryption protocols that primarily affect web servers and browsers that drive payment terminals.
FBI Warns of New POS Malware
Credit Union Times
June 12, 2015
Amidst the uproar over the massive government worker data breach, smaller intrusions continue to take place, such as a recent cyberattack against a restaurant chain’s credit card system that prompted the FBI to issue a warning.
Insider Threats, Hershey Card Fraud Raise Concerns
Credit Union Times
June 25, 2015
A survey stating that organizations experience nearly four insider threats per year, and reports of card fraud taking place over at least two months at Hershey Properties theme park in Hershey, Pa., have set off the latest round of cybersecurity alarms.
Trump Hotels Facing Likely Card Breach
July 1, 2015
While Donald Trump himself is busy racking up broken business deals after making disparaging remarks about Latino immigrants, the Republican presidential candidate’s Trump Hotel Collection appears to be the latest victim of a credit card breach.
5 Common Mistakes That Put Your SMB Clients At Risk for A Hack
July 8, 2015
Hackers, it turns out, target SMBs with as much frequency as large businesses. SMBs are at the same level for risk of security and credit card breaches as large corporations, according to the New York Times. In addition, the National Small Business Association’s 2014 Year-End Economic Report reveals half of 675 small businesses reported being victims of attacks in 2014, an increase of 44 percent from 2013. Of those companies, 68 percent reported having been hacked at least twice.
Breaches Confirmed at Zoo Gift Shops
Credit Union Times
July 09, 2015
The Denver-based Service Systems Associates, a third-party operator of concessions and retail services, is investigating a data security breach that took place in gift shops at nine U.S. zoos, including at the Detroit Zoo.
Brad Cyprus On Cyber Attacks Against Small Business
Houston Public Media
July 10, 2015
Cybercrime tends to draw the most attention when hackers hit a big corporation, like Target, or a government agency, like the federal Office of Personnel Management. But increasingly, hackers have been focusing their attention on small and midsize businesses. To find out why, Andrew Schneider of the Bauer Business Focus spoke with Brad Cyprus. Cyprus is co-founder of Netsurion, a Houston-based IT security services company.
American Dairy Queen Corporation Secures Netsurion as Preferred Managed Firewall Solution
July 16, 2015
"Customers frequent DQ restaurants for our mouth-watering food and world-famous soft-serve treats, not to concern themselves with who may be privy to sensitive data resulting from gaps in security technology. Netsurion's focus on the security of each individual customer drove our choice to select them as a solution," said Chuck Eicher, ADQ director of Restaurant Technology. "The Netsurion managed firewall solution provides DQ locations with strong security postures and peace of mind that patron credit card data is protected."
How to Get Backoff Malware to Step Back
July 28, 2015
There's a classic approach behind many of the retail cyberattacks that make the news: Backoff malware, which “sniffs” the traffic that flows on a network to identify and steal credit card data passed between point of sale (POS) terminals.
Hershey Park Investigating Card Fraud Pattern: Security Expert Comment
July 28, 2015
School’s out, and countless families are preparing to visit attractions like amusement parks and resort hotels. We’ve seen plenty of evidence that cybercriminals will attack all types of businesses, and those that process payment data are especially valuable. The recent investigation by popular vacation destination Hershey Park into a pattern of credit card fraud further emphasizes this. Therefore, it’s essential that hospitality companies take the necessary steps to protect customer data and ensure that stronger security measures are in place for their network, payment systems and on-premise Wi-Fi services. Making those areas a priority now will allow them to keep their visitors’ information safe and secure throughout the busy summer travel season.
Dairy Queen gives customer data security fit for a king
July 30, 2015
Dairy Queen restaurants thrive on providing customers treats, not exposing them to tricks from hackers and fraudsters. To ensure the good times keep rolling, American Dairy Queen Corp. (ADQ) in the U.S. is deploying the cloud-based Netsurion managed firewall platform to strengthen network security and Payment Card Industry (PCI) compliance to protect customer data.
Houston Professional Helps Protect Consumer Data
August 3, 2015
Credit card fraud and theft is one of the biggest security issues that consumers worry about most today. If I use my credit card at this store, will someone steal the number and make purchases with my credit? Many companies work to stop this from happening and keep consumer information private and secure so that thieves or other people with bad intentions cannot access it. Brad Cyprus, Chief of Security and Compliance and co-founder of Netsurion, talks about his career in security.
6 credit card security mistakes
August 6, 2015
The National Small Business Association polled 675 small businesses to find out how many had become victims of a cyber attack during the past 12 months. The answer was that almost half had experienced a breach, up from 44 percent in the prior year of 2013. And of those who reported being hacked last year, 68 percent said they had been victimized by cyber criminals more than once.
American Dairy Queen freezes out hackers
August 19, 2015
American Dairy Queen Corp. (ADQ) is doing its best to freeze out hackers and other security risks with a managed firewall solution from Netsurion. The remotely hosted platform helps ADQ provide security across a network of corporate and franchised stores. “As proven by recent breaches, basic restrictions on Web traffic are insufficient for combating modern malware attacks,” said Chuck Eicher, ADQ director of restaurant technology. “Netsurion helps write rules and setup protections that meet our franchisees’ unique requirements.”
Understanding and Combating the Looming Threat of Backoff POS Malware
August 20, 2015
Following the flood of recent data breaches, many may be wondering how or why companies are still inadvertently allowing data to be compromised, despite the vast security measures available to them today. The truth is that many blackhats looking to enter a system identify insecure remote access. In fact, the Department of Homeland Security brief on Backoff malware points out that of the 1,000 or more businesses affected, the majority were compromised through the use of remote access lacking sufficient security measures.
6 SMB Data Security Myths and Misconceptions
August 27, 2015
From the technology (firewalls, anti-virus, etc.) to the staffing requirements, many small businesses need this simple reality check to take a stronger data protection stance against data breaches.
Dairy Queen Ramps Up Payment Security With Netsurion
Retail Touch Points
August 28, 2015
Cyber criminals are becoming increasingly sophisticated and are implementing new tactics to capture customer data. As a result, retailers need to constantly fortify their payment systems in order to ensure data security and PCI compliance.
How To Help Your Merchant IT Clients Combat Card, Online Fraud Through EMV Transition
September 7, 2015
The transition to EMV chip-and-PIN cards will not, alone, prevent payment card fraud. Chris Melson, president of Netsurion explained the importance of encryption during his presentation “Deploying EMV? Discover The Impact To Security And PCI,” at Retail Solutions Providers Association (RSPA) RetailNOW 2015, held Aug. 2 to 5 at Gaylord Palms Resort and Convention Center, Orlando, FL.
Infographic: Healthcare Breaches In 2015
Vertical Systems Reseller
September 10, 2015
Kevin Watson, CEO of Netsurion, a provider of remotely managed network and data security services for multi-location businesses, commented, "The recent Excellus BlueCross BlueShield breach is yet another example of how a major national brand can suffer loss of customer trust and brand equity due to a data breach. As cyber criminals increasingly target personally identifiable information other than credit card or financial data, more and more businesses will need to be vigilant of their data security. What many businesses fail to recognize are the myriad of points of entry and egress from a network, including every branch and remote office location." The following infographic from Netsurion shows healthcare breaches in 2015.
Hackers Steal Data on 10.5 Million Excellus Healthcare Customers
September 11, 2015
Yet another US healthcare company has reported a major data breach – this time insurance firm Excellus said hackers have stolen the personal details of 10.5 million customers. The breach affected around 7 million “members, patients or others who’ve done business” with BlueCross BlueShield, with the remainder Lifetime Health Care customers.
New Netsurion Program Helps Partners Meet Global Security Standards
Channel Partners Online
September 22, 2015
Network security provider Netsurion has launched a new partner program to expand the reach of its Brand Guard offering to as many merchants as possible. Netsurion’s cloud-managed IT security services protect small-and medium-size businesses’ information, payment systems and on-premises public and private Wi-Fi networks from data breaches and other risks posed by hackers. The new program, titled PROTECT, is in addition to its existing partner program.
Swipe that! Computer chips make life harder on cheats
September 24, 2015
Eyeglass frames in more than 1,500 different styles, shapes and colors line the walls of Eye Trends-Barker Cypress. They average, without insurance, $200 but can top $500 for designer brands like Gucci, Tom Ford or Swarovski. A single transaction for, say, multiple pairs or glasses with premium lenses and coatings can easily top $1,000 - the kind of money that gets the attention of fraudsters.
Suspected Credit Card Breach At Hilton
Hospitality Business News
Spetember 25, 2015
Krebs on Security just reported that “Multiple sources in the banking industry say they have traced a pattern of credit card fraud that suggests hackers have compromised point-of-sale registers in gift shops and restaurants at a large number of Hilton Hotel and franchise properties across the United States. Hilton says it is investigating the claims.”
Hilton Hotels Latest to be Hit with Data Breach
September 25, 2015
Sources at multiple financial institutions say they have detected a pattern of fraudulent activity on customer cards that were used at Hilton Hotel properties between mid-April and late July 2015. The apparent breach—the numbers affected are not yet known—includes the company’s flagship Hilton locations, and brands Embassy Suites, Doubletree, Hampton Inn and Suites, and the upscale Waldorf Astoria Hotels & Resorts across the United States.
Six Safe Computing Tips to Help Retailers Fight Off Hackers and Secure Customer Data
October 15, 2015
It can be easy to either dismiss or feel overwhelmed by data security breaches. The current retail environment has reached a point where experts and consumers alike are no longer surprised when a major hack is announced. However, some retailers still think they’re too small to be worth a hacker’s time, while others assume if companies with billions in sales like Target and Home Depot can’t protect payment card data, then security measures must be worthless. In fact, neither is the case.
Philadelphia COO Helps Companies See High Security Risks
October 26, 2015
Jay Conn is the Chief Operating Officer for Netsurion. Netsurion is a provider of remotely managed network and data security services for multi-location businesses. Jay has over 25 years of experience with technology and Cloud-based/SaaS companies. Jay received his Bachelor of Arts degree from University of Massachusetts-Amherst, and his Master of Business Administration from California State University-Long Beach.
Computer Held Hostage: Should You Pay the Ransom?
Society for Human Resource Management
November 9, 2015
When a special agent with the FBI told attendees at a conference in Boston recently that they should “just pay the ransom” if their computers are ever infected with ransomware, many people were surprised. After all, the bad guys are not supposed to win. But, “the ransomware is that good,” FBI Assistant Special Agent Joseph Bonavolonta, who is in charge of the FBI’s Cyber and Counterintelligence Program in Boston, reportedly told attendees at the 2015 Cyber Security Summit.