Collaborate Disseminate
Version 1.1 of the PCI Secure Software Standard introduces the Terminal Software Module, a new security requirements module for payment software intended for deployment and operation on PCI-approved PIN Transaction Security (PTS) Point-of-Interaction (… Continue reading PCI SSC publishes PCI Secure Software Standard 1.1 and supporting program documentation
Organizations in the automotive industry are no stranger to demands and mandates regarding car and passenger safety, so addressing the issue of cybersecurity of computerized, connected vehicles should, in theory, not be a huge problem. Despite thieves … Continue reading Securing vehicles from potential cybersecurity threats
The PCI Security Standards Council (PCI SSC) has published version 1.1 of the PCI Secure Software Lifecycle (SLC) Standard and its supporting program documentation. The PCI Secure SLC Standard is one of two standards that are part of the PCI Software S… Continue reading PCI SSC releases PCI Secure Software Lifecycle (SLC) Standard 1.1
With the spread of more robust information and communication technologies, the possibility of remote work has become viable for a larger number of companies. However, allowing access to a company’s information systems from places and means of co… Continue reading Setting Up an ISO 27001-Compliant Remote Work Process
Last week, the big news from Google Cloud Next 2019 was that phones running Android 7.0 or higher can be turned into a security key for G Suite account 2-step verification. But at the event Google also announced a number of G Suite enhancements, many o… Continue reading Google introduces many G Suite security enhancements
Researchers have discovered a number of design flaws affecting the security of the recently introduced WPA3 data transmission protocol. Collectively dubbed Dragonblood (because they affect WPA3’s Dragonfly handshake), they can be exploited to mou… Continue reading WPA3 design flaws affect security of new Wi-Fi standard
The European Telecommunications Standards Institute (ETSI) has released ETSI TS 103 645, a standard for cybersecurity in the Internet of Things, to establish a security baseline for internet-connected consumer products and provide a basis for future Io… Continue reading European standards org releases consumer IoT cybersecurity standard
The Open Web Application Security Project (OWASP) is an open community dedicated to the mission of enabling companies to develop, purchase and maintain applications and APIs that can be trusted. Since 2003, OWASP has been releasing a list of the 10 m… Continue reading What You Think You Know about the OWASP Top 10 May Be Wrong
Wi-Fi Alliance introduced Wi-Fi CERTIFIED WPA3, the next generation of Wi-Fi security, bringing new capabilities to enhance Wi-Fi protections in personal and enterprise networks. As the Wi-Fi industry transitions to WPA3 security, WPA2 devices will con… Continue reading WPA3: Next generation of Wi-Fi security now available
The PCI Security Standards Council has announced a new PCI Security Standard for software-based PIN entry on commercial off-the-shelf (COTS) devices such as smartphones and tablets. What are we talking about here? Stores that offer customers the possib… Continue reading PCI Council sets security requirements for mobile point of sale solutions