Posts Tagged ‘PCI DSS’

Secure South West 11 event – access to cyber security expertise locally

SSW11 – The University of Plymouth are hosting the Eleventh Secure South West  event on the 24th October 2018 where academic and industry experts share data and cyber security knowledge with organisations in the South West This free event has gained significant traction within the South West region as it offers an amazing diversity of…

Read More

Check your E-commerce website for malicious JavaScript

Increase in malicious JavaScript attack on E-commerce websites. If you are running a website that takes credit card payments and have integrated a shopping cart – please take note: A relatively simple technique, that has been around for many years has suddenly been seen to be on the increase. The technique allows the injection of…

Read More

British Airways card breach – a sophisticated attack?

British Airways reported that it had experienced a “sophisticated, malicious criminal attack” on its website and App resulting in its customers full credit card details being stolen between 21 August and 5th September.  We explore how sophisticated this attack was, given the mandatory controls required to be Payment Card Industry Data Security Standard (PCI DSS)…

Read More

Data Breach at Ticketmaster

Ticketmaster are warning that customers personal data and payment information may have been accessed by an unknown  third-party. The breach was identified by Ticketmaster on the 23rd June 2018 and customers who may have been affected by the security breach have been contacted.  This includes customers who may have bought tickets, or attempted to buy…

Read More

Learn why a simple penetration test could have avoided a £60k fine

The ICO has issued a £60,000 fine to Boomerang Video Ltd after it suffered a cyber attack. By Roz Woodward An investigation by the ICO found the Berkshire-based company failed to take basic steps to stop its website being attacked. The ICO found that the company had failed to carry out regular penetration tests which should have…

Read More

Compliance with PCI DSS 3.2 likely to meet requirements of GDPR

PCI DSS 3.2 and GDPR, two major standards coming into force in 2018. It is important to get the ball rolling as soon as possible. The PSBE Cyber News Group is reporting that being compliant with PCI DSS 3.2 will more than likely mean compliance with the new GDPR. Changes for the new Payment Card…

Read More

Securious congratulates their new PCI QSA

Securious congratulates Roy Singer on becoming one of just over 2000 PCI QSA’s globally. We are very please to congratulate our own Roy Singer for successfully qualifying as a new Payment Card Industry Qualified Security Assessor (PCI QSA). Roy already has a wealth of cyber security qualifications and experience and we are delighted to have…

Read More

PCI Council warns new EU regulation could see average fines of £13k per small business for cyber security breach

The PCI SSC (Payment Card Industry Security Standards Council) warns UK firms of 60-130 fold increase in fines under General Data Protection Regulation Jeremy King, international director at the PCI Security Standards Council (PCI SSC)  said: “The new EU legislation will be an absolute game-changer for both large organisations and SMEs. “The regulator will be…

Read More