New PCI 3.1 Guidelines Address SSL Vulnerability

PCI DSS 3.1 - April 2015 - Payment Card Industry Data Security Council - standard 3.1

In April 2015, the PCI Security Standards Council (PCI SSC) published PCI Data Security Standard (PCI DSS) Version 3.1 and supporting guidance. The revision addresses vulnerabilities within the Secure Sockets Layer (SSL) encryption protocol that can put payment data at risk. This blog explains what this change represents to you and your business. Includes 2 whitepapers and 1 infographic.   Read more

Will Target Breach Prompt Retailers to Raise the Security Bar?

security concept

Did 2013 have to end with the somber news of a big credit card security breach? But it did! It is reported that 40 million credit cards were compromised in the security breach in stores of a major U.S. retailer Target. This is only a shade second to the earlier TJX breach in which 45 million credit cards… Read More

Wireless Forensics: A Review from RSA Conference 2010

Wireless_Forensics_Workflow

With more enterprises deploying wireless LANs and employee-owned WiFi devices flooding enterprises, wireless LAN forensics is becoming a key component of any network forensic audit — whether to prove compliance with a regulation such as PCI DSS or in response to a security incidence. But wireless presents unique challenges to forensic audits. Last month, at… Read More