CIO Today

CIO Today Network Sites:   Top Tech News  |   CIO Today   |   Mobile Tech Today   |   Data Storage Today
Daily Briefing for Technology's Top Decision-Makers
Eliminate costly downtime!
Find out how with Free White Paper
& enter to win a Samsung Galaxy Note

www.apc.com
Wednesday, April 23rd 
The future of tape is here.
This ad will display for the next 20 seconds. Please click for more information, or scroll down to pass the ad, or Close Ad.
Trending Topics:   Security Heartbleed Big Data Cloud Computing Windows XP Data Centers OS X Mavericks
Home
Enterprise Software
Enterprise Hardware
Big Data
Network Security
Cloud Computing
CRM Systems
Data Storage
Operating Systems
Communications
CIO Issues
Mobile Tech
Chips & Processors
World Wide Web
Business Briefing
After Hours
Press Releases
 
Free Newsletters
Top CIO News
 
Mobile Tech Today
 

Network Security

Hackers Grab 1.5 Million Visa, MasterCard Numbers

Hackers Grab 1.5 Million Visa, MasterCard Numbers
April 2, 2012 10:55AM

Bookmark and Share
"Unfortunately, traditional tools such as firewalls, antivirus and [intrusion detection and prevention systems] are no longer enough to protect against rapidly evolving zero-day and insider attacks," said security executive Mike Potts of the security breach at Global Payments of Visa and MasterCard data. "Companies must instead seek out next-generation solutions" to protect against data breaches like the one at Global Payments.

Your Next Generation Data Center Is Here! Vblock™ Systems: the world's most advanced converged infrastructure are built on the Cisco Unified Computing System with Intel® Xeon® processors. Vblock™ Systems deliver extraordinary time to market, ROI and TCO, and flexibility to meet your continually changing demands with 5X faster deployment, 96% less downtime, and 1/2 the cost. Click here to learn more.

It's no longer just a possibility. Visa and MasterCard are the latest victims of a security breach. Global Payments, an international credit card processor, on Sunday confirmed that hackers had stolen credit card numbers of as many as 1.5 million customers.

Whether the problem is careless or malicious insiders or criminal networks looking to monetize their exploits for financial and ideological gain, every organization must be diligent about protecting customer data, Lawrence Reusing, general manager for mobile security at Imation Corp., told us Monday morning.

"Today, companies are investing billions of dollars in the IT security industry's best-of-breed solutions," Reusing said. "Organizations need to layer their information network with technologies that protect the network itself from outside intrusion, the data and proprietary information that resides on it, and the easily lost or stolen mobile devices employees use to access the network and work out of the office."

Remembering Heartland

Neil Roiter, research director at Corero Network Security, also shared some thoughts with us on the topic. As he sees it, this latest breach shows that three years after the Heartland Payment Systems breach of 130 million credit card numbers, credit card data is still vulnerable.

"The Payment Card Industry Data Security Standard (PCI DSS) is highly prescriptive in nature, but simply complying does not ensure credit card security," Roiter said. "Companies that rely on PCI DSS to solely dictate their security measures will continue to remain vulnerable to attack."

We also asked Mike Potts, CEO of Lancope, for his insights into the Visa and MasterCard breach. His conclusion: The perimeter-based approach is not sufficient and fails to protect critical data and internal resources that bypass these point solutions. What's more, he said, enterprises must find new ways to deal with online security issues that are made more complex by IT consumerization, mobility and movement to the cloud.

"Unfortunately, traditional tools such as firewalls, antivirus and [intrusion detection and prevention systems] are no longer enough to protect against rapidly evolving zero-day and insider attacks," Potts said. "Companies must instead seek out next-generation solutions such as flow-based monitoring to obtain the comprehensive network visibility they need to thwart today's more targeted and sophisticated threats."

Browsers to Blame?

Bill Morrow, CEO and executive chairman of Quarri Technologies, told us that the continued adoption of Web applications for secure electronic transactions introduces a weak link in the chain of security. (continued...)

1  |  2  |  Next Page >

 

Tell Us What You Think
Comment:

Name:

Jay:

Posted: 2012-04-05 @ 4:41pm PT
In the wake of Global Payments' data breach, there has been a lot of advice on what people should do to protect themselves, but way too often we are asked to do more than what's needed and that can needlessly lead to different issues. However, while the damage done by the hackers is real, they cannot harm us without first tricking us into revealing the information they don't yet have (name, address, SSN). So as long as we are cautious and don't give our personal information to strangers, we will do just fine. For more: http://blog.unibulmerchantservices.com/how-to-respond-to-the-global-payments-data-breach.

Jay:

Posted: 2012-04-04 @ 4:03pm PT
From what we know, the Global Payments hackers may have managed to gain access to Track 2 data, which includes the account number, the card's expiration date and some other pieces of data, but not the cardholder's name, address, SSN and the card security code. So cardholders should now be on a high alert for phishing attacks, which may be employed by the criminals as a way to obtain the missing data. Of course, that depends on the hackers having obtained their victims' email addresses, which we don't know. For more: http://blog.unibulmerchantservices.com/what-criminals-can-do-with-the-stolen-global-payments-data.



 Network Security
1. Lessons from Verizon's Threat Report
2. Verizon Report Exposes Cyberthreats
3. How Are Web Sites Post-Heartbleed?
4. White House Updating Privacy Policy
5. Target Hackers May Be Tough To Find




 Most Popular Articles
1. BlackBerry Drops T-Mobile After Nasty Spat
2. Cisco, IBM Launch Internet of Things Consortium
3. Salesforce CRM Gets Industry Specific for Internet of Customers
4. Intel Bets on Cloudera for Big Data Analytics
5. SAP HANA Data Warehouse App Gets Faster Analytics

Have an informed opinion on this story?
Send a Letter to the Editor.
We want to know what you think.
Send us your Feedback.

 Related Topics  Latest News & Special Reports

  Google Maps, Now with Time Travel
  Lessons from Verizon's Threat Report
  NYPD Twitter Campaign Backfires
  Net Gets Faster, But Easier to Attack
  OnePlus One Boasts Android Weapon

 Technology Marketplace
Business Intelligence
Get real-time, cloud-based information services with Neustar.
 
Cloud Computing
Next Generation Data Center Is Here! Vblock™ Systems from VCE
 
Contact Centers
HP delivers the future of the contact center with HP Qfiniti 10.
 
Data Storage
Next Generation Data Center Is Here! Vblock™ Systems from VCE
Barium Ferrite (BaFe) is the future of tape.
2.5" Enterprise-class SATA & SAS SSDs for server & storage applications
 
Enterprise Hardware
Barium Ferrite (BaFe) is the future of tape.
2.5" Enterprise-class SATA & SAS SSDs for server & storage applications
 
Hardware
Protect your network with APC Smart-UPS battery backup
 
Network Security
Protect your network with APC Smart-UPS battery backup
 

Network Security Spotlight
What Verizon's Data Breach Report Can Teach Enterprises
It’s probably not a jaw-dropper, but cyberespionage is officially on the rise. And the use of stolen or misused credentials is still the leading way the bad guys gain access to corporate information.
 
Top Cyberthreats Exposed by Verizon Report
Beyond Heartbleed, there are cyberthreats vying to take down enterprise networks, corrupt smartphones, and wreak havoc on businesses. Verizon is exposing these threats in a new report.
 
Where Do Web Sites Stand, Post-Heartbleed?
A security firm says the vast majority of Web sites have patched themselves to protect against the Heartbleed bug, but now there are questions raised on the reliability of open-source programs.
 
Navigation
CIO Today
Home/Top News | Enterprise Software | Enterprise Hardware | Big Data | Network Security | Cloud Computing | CRM Systems
Data Storage | Operating Systems | Communications | CIO Issues | Mobile Tech | Chips & Processors | World Wide Web
Business Briefing | After Hours | Press Releases
Also visit these Enterprise Technology Sites
Top Tech News | CIO Today | Mobile Tech Today | Data Storage Today

Services:
FreeNewsFeed | Free Newsletters | XML/RSS Feed

About CIO Today Network | How To Contact Us | Article Reprints | Services for PR Pros (In partnership with NewsFactor) | Top Tech Wire | How To Advertise

Privacy Policy | Terms of Service
© Copyright 2000-2014 CIO Today. All rights reserved. Article rating technology by Blogowogo. Member of Accuserve Ad Network.