Tagged as: #databreach

28 Dec
2015

Cyber-Criminals Want Your PII — Is Your Data Secure?

Personally Identifiable Information (PII) is the most valuable information for the worldwide network of fraudsters. PII records generally sell for around $50/record on the black market, as opposed to around $5/payment account number (PAN). You can do the ugly math on the Anthem healthcare hack that exposed 78 million records.

06 Nov
2015

Tokenization Vs Encryption – 4 Quick Takeaways

1) How do you describe the differences between tokenization and encryption? Encryption takes the original value of sensitive data and through mathematics, generates a new value. The mathematics is what makes this value secure. Ultimately, the recipient needs the real value, so a key that supports the mathematics is shared

29 Oct
2015

European Union High Courts Strike Down Safe Harbor – TokenEx is Prepared

Recently the European Union’s (EU) Highest Court struck down Safe Harbor, an agreement between the United States and the EU regarding the sharing of data between the regions for business purposes. From reports, there are approximately 4,500 US organizations that will be impacted by this ruling, including data vault and

28 Oct
2015

Overcoming Major Data Security Challenges in Retail Petroleum Part 3

Part Three of a Three Part Blog: Industry Recommendations for Implementing a Tokenization Solution Looking back on the first two blogs in this series on the Retail Petroleum industry, I focused on the challenges of payment data security that this diverse industry faces. Chief among them is the different channels

19 Oct
2015

Overcoming Major Data Security Challenges in Retail Petroleum Part 2

EMV is More Expensive Than You Think As discussed in the previous blog posting, with the sheer amount of transactional data flowing through retail petroleum industry environments, data security presents a challenging series of initiatives to overcome. With multiple technologies touching the payment stream—from the automated fuel dispenser to the

25 Aug
2015

Are Global Card Brands Stacking the Deck with EMVco?

The card brands have something up their sleeve with the EMVco network tokenization standards. According to the April 2015 PCI document “Tokenization Product Security Guidelines” EMVco has set proprietary standards on network tokenization. These new suggested proprietary standards obviously benefit the card brands and are intended to create additional barriers

13 Aug
2015

A Data Breach Class Action Lawsuit Will Cripple Retailers

Recent federal court rulings are showing more favor for victims of data breaches, giving precedent to class-action lawsuits against the businesses who are breached. The U.S. Court of Appeals for the Seventh Circuit recently ruled that victims of data stolen during a security breach at Neiman Marcus stores have standing—a