Posted on September 16th, 2009 No comments
There’s a very old joke that when swimmers are about to go into shark-invested waters, they should always swim with a buddy. If a shark attacks, feed him your buddy.
Originally posted here:
When Hit With A Major Data Breach, Retailers Should Use The Buddy System
Posted on September 13th, 2009 No comments
When Albert Gonzalez officially pleaded guilty to many of the federal cyberthief charges against him on Friday (Sept. 11), the government shed a little more light on the case, such as that it was BJ’s Wholesale Club that was first attacked and that the Secret Service has collected “more than forty million distinct credit and debit card numbers from two computer servers” controlled by Gonzalez and his associates and has counted the consumer, retail and bank victims as “an enormous number of people, certainly millions upon millions, perhaps tens of millions.”In Friday’s hearing, the government for the first time put a number next to the DSW breach, saying that the $1.5 billion apparel chain operating 300 stores in 37 states (in addition to supplying footwear to 367 leased locations) lost more than one million card numbers in the breach.
The rest is here:
After Gonzalez Plea, Feds Say BJ’s, OfficeMax Had More Critical Role
Posted on September 9th, 2009 No comments
PCI Columnist David Taylor writes that he “actually believes” that the PCI DSS controls, implemented in an “above average” way, could have stopped the Gonzalez-led criminal masterminds from breaking into a company. Not all companies, but a company with above average security.”Let’s say a group of retailers is being chased through the jungle by a tiger named, say, Gonzalez
See more here:
PCI Compliance Could Have Stopped Gonzalez