Data Breach

18 Jan
2017

Don’t be Next – Securing Usernames and Passwords with Tokenization

Don’t be Next – Securing Usernames and Passwords with Tokenization Yahoo- 1 Billion, Myspace– 427 Million, Oracle’s Micros- 330 Million, Ashley Madison– 300 Million, LinkedIn- 167 Million, Dropbox- 68 million: these are the amounts of exposed usernames, passwords, and numerous pieces of valuable PII breached in 2016. What’s incredible is

28 Apr
2016

Were the Panama Papers Revealed by A Whistleblower, Hacktivist, or Thief? Should it Matter to Security Professionals?

Were the Panama Papers Revealed by A Whistleblower, Hacktivist, or Thief?  Should it Matter to Security Professionals? The Panama Papers have the world’s full attention. The pundits conjecture that the Prime Minister of Iceland stepping down from power due to revealed financial improprieties is just the tip of the proverbial

15 Feb
2016

TLS 1.0 Is Going Away – How Does That Impact JavaScript Browser-Based Encryption?

TLS 1.0 Is Going Away – How Does That Impact JavaScript Browser-Based Encryption? In the early days of the Internet, before e-commerce was a major force, the simple browsers made use of an equally simple security protocol called Transport Layer Security (TLS version 1.0) based on the Secure Socket Layer

27 Jan
2016

Gone Phishing – Malware Wants your PII Part 2

Gone Phishing – Malware Wants your PII Part 2 In our last blog installment, we discussed the rash of data breaches that are hitting all industries, aimed at stealing very valuable Personally Identifiable Information (PII). The current generation of malware attacks faster and is nearly undetectable, deploys more insidious ransomware,

21 Jan
2016

Gone Phishing – Malware Wants Your PII Part 1

Gone Phishing – Malware Wants Your PII Part 1 Time Warner Cable, Fitbit, and Hilton Hotels are the latest businesses reeling from malware attacks. Millions of PII records have been exposed from these organizations and customers are questioning the effectiveness of the data security measures for preventing the onslaught of

25 Aug
2015

Are Global Card Brands Stacking the Deck with EMVco?

Are Global Card Brands Stacking the Deck with EMVco? The card brands have something up their sleeve with the EMVco network tokenization standards. According to the April 2015 PCI document “Tokenization Product Security Guidelines” EMVco has set proprietary standards on network tokenization. These new suggested proprietary standards obviously benefit the

13 Aug
2015

A Data Breach Class Action Lawsuit Will Cripple Retailers

A Data Breach Class Action Lawsuit Will Cripple Retailers Recent federal court rulings are showing more favor for victims of data breaches, giving precedent to class-action lawsuits against the businesses who are breached. The U.S. Court of Appeals for the Seventh Circuit recently ruled that victims of data stolen during