|
|
|
|
 |
Breach Security Advances Protection of Payment Card Authentication Data |
| Companies mentioned in this article: |
|
Breach Security |
|
| 7/16/2008 @ 6:05 AM
print this article -
email to a friend -
join our eNewsletter
|
 |
Breach Security, Inc., the leader in web application security, today announced the latest release of its flagship WebDefend web application security appliance, version 3.4. The new version makes it easier for businesses to comply with the Payment Card Industry (PCI) Data Security Standard (DSS) by securing magnetic stripe data, cardholder verification numbers and personal identification numbers (PINs).
Magnetic stripe data is more dangerous for hackers to access than just credit card numbers because it includes personal data, expiration date, the cardholder's name and security code information. Armed with this information, hackers can easily duplicate credit cards and the "duplicate" cards are inexpensive to buy in bulk.
Already recognized for its industry-leading PCI DSS compliance capabilities that protect leakage of credit card data, WebDefend version 3.4 expands its masking capabilities of sensitive payment account data. The new release now allows administrators to mask full magnetic stripe data, preventing it from being stored or displayed anywhere within the WebDefend software, including in audit logs and within the management console.
"PCI compliance is extremely important to us," said Michael Jackson, information security officer at Pegasus Solutions, Inc., the leading provider of technology and services to the hospitality industry, and a Breach Security customer. "WebDefend's ability to protect sensitive authentication information, such as cardholder data and personally identifiable information will help ensure that all of our customers' transactions are secure."
PCI DSS is a set of security requirements established by leading card issuing companies, including American Express, Visa Inc. and MasterCard Worldwide. The standard is designed to protect sensitive account data such as credit card numbers, customer names and contact information. Any organization that "stores, processes or transmits" card numbers must comply with PCI DSS. Organizations may keep certain data, such as account numbers, cardholder names and expiration dates, subject to specific conditions. Full magnetic stripe data, cardholder verification codes and PINs, however, may not be stored at any time under any circumstances. With the card number, this information enables a credit or debit transaction to occur.
"Maintaining the security and integrity of their customers' credit card information is critical for any web-based business, large or small," said Mike Pierce, CEO, Breach Security. "More organizations are realizing that PCI compliance is not simply a consumer-driven mandate, but a way to mitigate their overall risk. The latest WebDefend release delivers enhancements that help organizations continue to address their compliance, risk management and security concerns."
Other features in WebDefend version 3.4 include:
- - Enhanced profiling engine: Continuously builds site profiles in live environments based on actual traffic and real-world use, enabling immediate and automatic application learning and protection.
- - Image leeching prevention: Finds images within a web application that are linked to external web servers, which are frequently used to steal intellectual property from the original server; image leeching may also be employed in cross-site scripting and phishing attacks.
- - Scam detection: Identifies phishing attacks on websites, enabling organizations to spot these traps and pinpoint victimized site visitors more quickly.
- - Updated signature database: Provides updated application signature rules to prevent the latest attacks, including iFrame attacks, content theft and new SQL injection variants.
About WebDefend
WebDefend is an advanced web application firewall that offers customized, behavior-based security for each protected application. Only WebDefend uses a patent-pending profiling system and multiple, collaborative detection engines to ensure the flow of business-critical traffic while supplying complete protection for applications to keep the organizations' confidential information safe from targeted attacks. Deployed out-of-line, WebDefend uniquely provides non-intrusive, effective security for multi-application environments while continuing to provide full blocking capabilities. WebDefend has been praised for its accurate attack detection and prevention, ease-of-use, performance and targeted Payment Card Industry features in reviews by major industry publications including SC Magazine and Information Security magazine.
About Breach Security, Inc.
Breach Security, Inc. is the leading provider of real-time, continuous web application security that protects sensitive web-based information. Breach Security's products protect web applications from hacking attacks and data leakage, and ensure applications operate as intended. The company's products are trusted by thousands of organizations around the world, including leaders in finance, healthcare, ecommerce, travel and government. For more information, please visit www.breach.com/. |
| Computers/Internet/Hardware/Software |
|
|
| |
| Friday, September 5, 2008 |
 |
|
SensorWave Delivers Sea Breeze Success Story to San Diego City Council Posted 4:34 PM PST
|
| |
| Thursday, September 4, 2008 |
|
|
MP3tunes, Logitech Deliver Your Music Collection to Any Room in Your Home Posted 3:28 PM PST
DVEO to Introduce Cost Effective MPEG-2 Transport Stream Playout Server at IBC in Amsterdam Posted 3:25 PM PST
OCTuS, Inc. Signs Letter of Intent with Nova Mobility Systems Inc. Posted 7:31 AM PST
|
| |
| Wednesday, September 3, 2008 |
|
|
INDUS Technology WINS SPAWAR Comptroller Legacy Systems Data Cleansing Contract Posted 3:26 PM PST
Blank Rome Selects Anacomp's CaseLogistix for Enterprise-Wide Litigation Support Posted 3:17 PM PST
San Diego CIOs Report on Fourth-Quarter Hiring Outlook; Survey Measures Hiring Optimism Among Local Technology Executives Posted 3:14 PM PST
Plug Power Selects Maxwell Technologies' BOOSTCAP Ultracapacitors for GenDrive Fuel Cell-Based Power Packs for Lift Trucks Posted 6:34 AM PST
Cymer Unveils New XLR 500d, Enabling High Productivity Dry ArF Lithography Posted 6:18 AM PST
|
| |
| Tuesday, September 2, 2008 |
|
|
TISCOR Announces Its MediMizer X3 Achieves Microsoft Platform Test Certification Posted 5:31 PM PST
State of Georgia Selects Advanced Reservation Systems, Inc. (ARES) for Tourism Website Enhancements Posted 5:00 PM PST
Trusonic Announces New, Innovative Internet-Based Media Player Posted 8:42 AM PST
Aonix Ports Deterministic Virtual Machine to PikeOS Posted 8:13 AM PST
Staccato Introduces Ripcord2 Single-Chip, Ultra-Wideband IC Family Posted 8:07 AM PST
|
| |
| Friday, August 29, 2008 |
|
|
Overland Storage Reduces Cost Structure; Reduces Labor Force and Cuts Budget to Lower Operating Expenses Posted 8:38 AM PST
|
| |
| Thursday, August 28, 2008 |
|
|
StoneFly Optimizes IP SANs With Citrix XenServer Server Virtualization Platform Posted 3:19 PM PST
The I.T. Pros Land on CRN’s Fast Growth 100 for Second Year; The I.T. Pros Places at #63, One of Only 13 Chosen in California Posted 2:54 PM PST
Federal Aviation Administration Selects EDSA Power Analytics Software for Mission-Critical Facilities Posted 7:13 AM PST
|
| |
| Wednesday, August 27, 2008 |
|
|
Sony Expands U.S. nav-u Personal Navigation System Product Line Posted 3:49 PM PST
BakBone’s NetVault: Backup Gives Fat Spaniel Powerful Data Protection for Diverse IT Environment Posted 3:20 PM PST
Dot Hill in Negotiations With Ciprico Inc. to Acquire Certain Intellectual Property Assets Posted 9:07 AM PST
Breach Security Helps Organizations Accelerate PCI Compliance With New PCI QuickStart Packages Posted 9:06 AM PST
San Diego’s MIR3 Named to Inc. 500 List Posted 8:44 AM PST
EDSA Introduces Industry’s First Real-Time Electrical Arc Flash Mitigation System Posted 8:43 AM PST
|
| |
| Tuesday, August 26, 2008 |
|
|
Asymtek Wins 2008 Global Technology Award for Spectrum S-920N Series of Scalable Dispensing Platforms for Microelectronics Packaging Posted 3:13 PM PST
Dot Hill Pioneers SAS RAID Solutions With 450GB Disk Drives Posted 8:50 AM PST
Verari Systems Extends Award-Winning Blade Storage Technology with the SB5168XL DataServer Posted 7:59 AM PST
|
| |
| Monday, August 25, 2008 |
|
|
Breach Security Expands Worldwide Channel Program Posted 4:14 PM PST
Basys Moves to Web-Based Content Delivery Using MadCap Flare Posted 6:34 AM PST
|
|
|
|
|
|
FreshNews.com Jobs Change DAILY
We Have 5,000 + Job Listings! Open Your FREE Account
Employers or Job Searchers Get Started Now! Click Here
|
