Content about Security

July 15, 2014

Data breaches in the state of New York more than tripled between 2006 and 2013, exposing 22.8 million records.

New York – Data breaches in the state of New York more than tripled between 2006 and 2013, exposing 22.8 million records. According to Bloomberg, a report from the New York attorney general’s office indicates almost 5,000 data breaches were reported in New York during those seven years.

July 10, 2014

Thirty-five percent of consumers would stop shopping at a store where their data was hacked.

Austin, Texas – Thirty-five percent of consumers would stop shopping at a store where their data was hacked. According to a recent survey of almost 2,000 consumers by software consulting firm Software Advice, another 22% would be much less willing to shop there.

June 25, 2014

Researchers at computer security firm Duo Security have discovered a flaw in the two-step method PayPal uses to authenticate account-holders.

San Jose, Calif. – Researchers at computer security firm Duo Security have discovered a flaw in the two-step method PayPal uses to authenticate account-holders. The flaw involves a temporary security key PayPal users can generate with a personal device as an additional step along with their password for account log-in.

June 24, 2014

Data breaches are on the rise: Mounting an attack on retail systems has become increasingly attractive to attackers because malware can be delivered at very low cost, according to Mark Bower, VP product management and solutions, Voltage Security, a Cupertino, California, provider of data-centric encryption and tokenization.

“So it becomes very attractive to attackers to try and steal credit card and personal data they can monetize very quickly,” he added.

June 13, 2014

P.F. Chang's Chain Bistro confirmed Friday that it had been the victim of a data breach in which data was stolen from customers’ credit and debit cards used at its restaurants.

NEW YORK — P.F. Chang's Chain Bistro confirmed Friday that it had been the victim of a data breach in which data was stolen from customers’ credit and debit cards used at its restaurants.

June 12, 2014

P.F. Chang’s China Bistro Inc. is the latest retailer to investigate a possible data breach.

Scottsdale, Ariz. — P.F. Chang’s China Bistro Inc. is the latest retailer to investigate a possible data breach.

The retailer emailed has been contacted by banks and law enforcement agencies about online reports that credit card and debit card numbers matching ones used at P.F. Chang’s locations between March and May 2o14 have appeared for sale on underground hacker websites.

Media reports indicate the U.S. Secret Service is also investigating the potential breach, although the Secret Service has not publicly commented.

 

June 11, 2014

Italian hypermarket retailer Bennet has completed the rollout of electronic article surveillance (EAS) loss prevention solutions in its stores in Italy.

Montano Lucino, Italy — Italian hypermarket retailer Bennet has completed the rollout of electronic article surveillance (EAS) loss prevention solutions in its stores in Italy. The solution involves the installation of 1,000 P20 EAS antennas from Checkpoint’s Evolve solutions, as well as radio frequency (RF) tags, Alpha high-theft solutions and point-of-sale deactivators, in addition to the rollout of an RF source-tagging program aimed at increasing on-shelf availability, improving open merchandising while reducing labor costs and inventory shrink.

June 10, 2014

Target Corp. has named Brad Maiorino as senior VP, chief information security officer, a new position added as the chain overhauls its security department in the wake of its data breach. Maiorino comes to Target from General Motors, where he was the company’s chief information security and information technology risk officer. Prior to that, he was the chief information security officer at General Electric.

Minneapolis — Target Corp. has named Brad Maiorino as senior VP, chief information security officer, a new position added as the chain overhauls its security department in the wake of its data breach.  Maiorino comes to Target from General Motors,  where he was the company’s chief information security and information technology risk officer.  Prior to that, he was the chief information security officer at General Electric.

May 23, 2014

The states of Connecticut, Florida, and Illinois, are jointly investigating a recent data breach at EBay Inc., and the state of New York is asking EBay to offer free credit monitoring for any customer whose data was exposed.

San Jose Calif. – The states of Connecticut, Florida, and Illinois, are jointly investigating a recent data breach at EBay Inc., and the state of New York is asking EBay to offer free credit monitoring for any customer whose data was exposed.

May 21, 2014

EBay Inc. is asking EBay users to change their passwords because of a cyberattack that compromised a database containing encrypted passwords and other non-financial data.

San Jose, Calif. - EBay Inc. is asking EBay users to change their passwords because of a cyberattack that compromised a database containing encrypted passwords and other non-financial data. After conducting extensive tests on its networks, the company said it has no evidence of the compromise resulting in unauthorized activity for EBay users, and no evidence of any unauthorized access to financial or credit card information, which is stored separately in encrypted formats.

May 21, 2014

The China-based business of U.K. fashion retailer New Look has selected a POS system enabled with DigitalPersona fingerprint technology.

London -- The China-based business of U.K. fashion retailer New Look has selected a POS system enabled with DigitalPersona fingerprint technology. After a successful trial at six of the retailer’s stores in February, New Look is set to expand their use of biometrics in 16 of its stores by the end of 2014, with longer-range plans to equip 100 stores by 2017.

May 9, 2014

Buffalo Americas, a provider of external storage, network attached storage and networking solutions, is releasing the TeraStation 5200 Network Video Recorder (NVR) series with embedded support for Axis Camera Companion.

Austin, Texas – Buffalo Americas, a provider of external storage, network attached storage and networking solutions, is releasing the TeraStation 5200 Network Video Recorder (NVR) series with embedded support for Axis Camera Companion. The TeraStation 5200 NVR provides a complete turnkey video surveillance network attached storage (NAS) solution, offering redundant managed storage and recording for use in conjunction with Axis Communications network cameras and the complimentary Axis Camera Companion software.

May 7, 2014

Chain Store Age will host a webinar sponsored by Voltage Security on the steps retailers can take to secure their store and online networks against costly data breaches.

New York -- Chain Store Age will host a webinar sponsored by Voltage Security on the steps retailers can take to secure their store and online networks against costly data breaches. Speakers will also discuss key lessons learned from the recent breaches, and the latest developments in data security and retail fraud protection.
   

May 6, 2014

IBM has introduced comprehensive new security software and services to help organizations protect their critical data in an environment where advanced persistent threats, zero day attacks, breaches, and the financial impact on an organization continue to rise.

Armonk, N.Y. -- IBM has introduced comprehensive new security software and services to help organizations protect their critical data in an environment where advanced persistent threats, zero day attacks, breaches, and the financial impact on an organization continue to rise.

According to two IBM-commission studies, the average cost of a data breach increased by 15%, reaching an average of $3.5 million. The majority of companies surveyed say targeted attacks are the greatest threat, costing them on average $9.4 million in brand equity alone.

May 5, 2014

It has been about five months since the Target data breach made the vulnerability of retail POS data a hot topic. Investigation has since shown the Target breach did not involve POS terminals.

It has been about five months since the Target data breach made the vulnerability of retail POS data a hot topic. Investigation has since shown the Target breach did not involve POS terminals. However, high-profile thefts of customer payment card data from Target and other retailers including Neiman Marcus, Michaels and Sally Beauty Supply have highlighted the need for U.S. retailers to adopt the global Europass, MasterCard and Visa (EMV) standard for accepting payments from cards that store consumer information on secure embedded microchips, rather than on magnetic stripes.

May 1, 2014

The recent cyber attacks on Target, Neiman Marcus and Michaels Stores had an immediate and profound impact on sales, as well as a widespread and ongoing ripple effect on consumer confidence in the safety of credit-card information at point-of-sale terminals.

By Jason Fredrickson, Guidance Software

The recent cyber attacks on Target, Neiman Marcus and Michaels Stores had an immediate and profound impact on sales, as well as a widespread and ongoing ripple effect on consumer confidence in the safety of credit-card information at point-of-sale (POS) terminals.

April 29, 2014

Consumers avoid doing business with a breached organization at a high rate.

San Francisco - Consumers avoid doing business with a breached organization at a high rate. According to a new study conducted by Javelin Strategy & Research and commissioned by data management solution provider, Identity Finder, 33% of customers will shop elsewhere if their retailer of choice is breached.

April 23, 2014

Ever since the major retailer breaches last year, outsiders have been pointing fingers at the victim merchants demanding to know how something like this could happen. But cyber risk in the payment card industry is a problem greater than any one company.

By Erin Nealy Cox, Stroz Friedberg

April 18, 2014

If retailers want to address credit card breaches head-on, then they need to join the leaders already taking their systems off the radar of advanced malware based attacks — especially any retailer that's seen repeated attacks, which illustrate that traditional IT defenses simply don't cut the mustard.

By Mark Bower, Voltage Security

April 3, 2014

Family Dollar is rolling out electronic article surveillance (EAS) loss prevention technology from Checkpoint Systems across the retailer's more than 8,000 stores nationwide.

Thorofare, N.J. -- Family Dollar is rolling out electronic article surveillance (EAS) loss prevention technology from Checkpoint Systems across the retailer's more than 8,000 stores nationwide. It is one of the fastest roll-outs in the industry, with 3,500 installations already completed and deployments in 120 more stores each week, according to Checkpoint.

March 31, 2014

Information security firm Trustwave Holdings Inc., which is being sued in connection with the Target Corp. data breach, is denying that it managed data security for Target.

Chicago – Information security firm Trustwave Holdings Inc., which is being sued in connection with the Target Corp. data breach, is denying that it managed data security for Target. In a letter to its business partners and clients, Trustwave CEO Robert McCullen said Trustwave did not monitor the Target data network or process credit card data from the retailer’s customers.

March 18, 2014

Six-in-10 (60%) of those who knew about any data breaches at notable retailers, such as Target and Neiman Marcus, hold the merchant responsible for preventing future incidents of a data breach.

San Mateo, Calif. – Six-in-10 (60%) of those who knew about any data breaches at notable retailers, such as Target and Neiman Marcus, hold the merchant responsible for preventing future incidents of a data breach. The “2014 Consumer Reaction to Financial Data Breaches Study” of more than 2,000 adult U.S. consumers from Feedzai and Harris Interactive also found that 43% think nothing is more aggravating than getting credit/debit card data stolen.

March 14, 2014

Target dropped prices on its monitored assortment by more than 20% during the days leading up to its confirmation of the data breach that compromised the security of 70 million customers’ personal information during the pre-holiday shopping season.

Ottawa, Canada - Target dropped prices on its monitored assortment by more than 20% during the days leading up to its confirmation of the data breach that compromised the security of 70 million customers’ personal information during the pre-holiday shopping season. According to data from 360pi analyzing approximately 830 products across eight categories, including TVs, tablets, digital cameras and more, Target dropped its prices by 18% between Dec. 14 and Dec. 17.

March 14, 2014

Target Corp. acknowledged its security software picked up on suspicious activity after a cyber attack was launched, but it decided not to take immediate action.

New York -- Target Corp. acknowledged its security software picked up on suspicious activity after a cyber attack was launched, but it decided not to take immediate action. The chain also advised that its security breach last year could be even more extensive than reported so far, Reuters reported.

March 13, 2014

Target Corp. reportedly had early notice of the holiday data breach that exposed the personal and financial information of millions of customers but did not act upon it.

Minneapolis – Target Corp. reportedly had early notice of the holiday data breach that exposed the personal and financial information of millions of customers but did not act upon it. According to Bloomberg, a $1.6 million security application called FireEye notified Target of a possible intrusion in to its network, but the retailer failed to respond.