Welcome to Delicate template
Header
Just another WordPress site
Header

In light of the recent Target event, there has been an uptick in activity around malware that specifically targets Point of Sale systems. The most common ones that seem to be referenced are the following:

BlackPOS: Affects Windows-based Point of Sale systems. The attack essentially sits in between the card reader and the POS application. Track data (data that can be used to replicate a physical credit card) is extracted and uploaded to a remote server via FTP.Read more

Jerald Dawkins

Jerald Dawkins

Dr. Jerald Dawkins is the CEO and Founder of TRUE and has extensive experience in regulatory compliance, technical risk assessments, penetration testing, web application vulnerability analysis and secure coding. Dr. Dawkins is the author of numerous publications and presents at national and international conferences. He holds the following certifications: CISSP, NSA IAM, and CNSS 4011-4015.

More Posts

Not to make light of the gravity of the event, but here we go again – Consumers are subjected to another round of warnings about yet another credit card information breach! Unfortunately, these data breach warnings are in danger of becoming as common as the daily weather report. This time the source of the breach, which affects Visa and MasterCard credit and debit cards, has been laid at the feet of Atlanta-based payment processor Global Payments. Global Payments self-reported that unauthorized access into its processing system had indeed taken place earlier this year.

Read more

Valerie Jacobi

Valerie Jacobi

Valerie Jacobi is a Guest Contributor for True Digital Security and has extensive experience in security policy and procedure development, controls design and testing, auditing, and consulting. Valerie holds CISSP and CISA certifications.

More Posts - Website

Implementing tokenization is much more about understanding how your organization interacts with payments than it is simply rolling out a device that will tokenize payment card data. Many tokenization solutions in the market today are a “silver bullet” and can remove your environment from PCI scope. Beware though, most solutions address only one piece of the tokenization puzzle.Read more

Alex Pezold

Alex Pezold

Alex is the Director of Business Development at True. He is a Certified Information Systems Security Professional (CISSP) and holds Committee on National Security Systems (CNSS) certifications for Designated Approving Authority and Information Security System Professional. Alex has a Masters of Science in Computer Science, with an Information Security emphasis, and has participated in the Federal Service Cyber Corps Program sponsored by the National Science Foundation and Department of Defense.

More Posts

Don’t be fooled. Implementing tokenization may not be as easy as they say. In fact, depending on your environment, implementing tokenization can be quite complex. For instance, if your company is a wholesaler and takes payments through multiple channels, implementing tokenization in all of those channels can be quite challenging.Read more

Alex Pezold

Alex Pezold

Alex is the Director of Business Development at True. He is a Certified Information Systems Security Professional (CISSP) and holds Committee on National Security Systems (CNSS) certifications for Designated Approving Authority and Information Security System Professional. Alex has a Masters of Science in Computer Science, with an Information Security emphasis, and has participated in the Federal Service Cyber Corps Program sponsored by the National Science Foundation and Department of Defense.

More Posts

How do you know if Tokenization is the right data security solution for your environment? Depending on how sensitive data flows throughout your environment, integrating a tokenization solution may not be the right solution. For instance, tokenizing a very small environment does not make sense if point-to-point encryption can provide the necessary means for data protection. Conversely, tokenization can drastically reduce, if not eliminate, a majority of your environment from PCI Scope.Read more

Alex Pezold

Alex Pezold

Alex is the Director of Business Development at True. He is a Certified Information Systems Security Professional (CISSP) and holds Committee on National Security Systems (CNSS) certifications for Designated Approving Authority and Information Security System Professional. Alex has a Masters of Science in Computer Science, with an Information Security emphasis, and has participated in the Federal Service Cyber Corps Program sponsored by the National Science Foundation and Department of Defense.

More Posts