Level 2 Merchants Required to Have On-Site Assessment by QSA

Posted by Peter Zendzian in Thursday, June 18th 2009   under: PCI       

On June 15, 2009 MasterCard International introduced several changes to their Site Data Protection (SDP) program.  Among these changes was a new requirement for Level 2 Merchants to undergo an on-site assessment by a Qualified Security Assessor in order to validate their PCI DSS compliance.  The initial deadline for these validations is December 31, 2010. …click here to read more

no comment

Protecting your email address from domain spoofing with Kerio MailServer

Posted by Peter Zendzian in Wednesday, June 3rd 2009   under: Email    Tags: , , , , , ,    

Protect your email address from domain spoofing with Caller-ID and Sender Policy Framework

You may have noticed an increase in a particular type of email spam, where the spammer uses your email address as the sender in an attempt to lower the spam rating of the message. In order to combat this type of spam, Kerio MailServer available at ZZ Servers includes two special Anti-Spam technologies that use Domain Name services to validate the IP address of a sending mail server.
…click here to read more

no comment

Understanding PCI Levels and Types

Posted by Peter Zendzian in Tuesday, June 2nd 2009   under: PCI    Tags: , , , , ,    

Any merchant who accepts credit cards and has a merchant account must validate compliance. It does not matter if you use a 3rd party processor or if you outsource all of your credit card processing. It’s the ownership of the merchant account that defines if you must validate compliance. The only to avoid PCI compliance is by not having a merchant account. Below are some charts which will help you decide which category and merchant type your business fits into. …click here to read more

no comment

Batteries.com Credit Card Data Stolen

Posted by Peter Zendzian in Wednesday, May 27th 2009   under: PCI, Security    Tags: , ,    

Yet another data breach involving theft of credit card data has been announced. On March 13th, Batteries.com received notice from a customer about potential unauthorized activity on their credit card. They later discovered the Batteries.com network had been breached from around February 25, 2009 to April 9, 2009. The breach involved theft of names, addresses, and credit card information.

This breech at Batteries.com shows that a merchant does not need to be large like Heartland to be targeted by hackers.

For more information regarding this breech, visit the Batteries.com security and fraud prevention page.

3 comments

Credit Card Data Stolen and Distributed in a Dilebarate Attack

Posted by Peter Zendzian in Tuesday, April 7th 2009   under: PCI, Security    Tags: , ,    

In an ongoing saga, one of the most popular web hosting message boards www.webhostingtalk.com has been dealt another serious blow to it’s security.  Late last month, Webhostingtalk was hacked in a deliberate, sophisticated and calculated manner. The attacker was able to circumvent their security measures and access via a backdoor protected by a firewall to deleted all backups and main databases.

…click here to read more

no comment

DSBL is Gone

Posted by Peter Zendzian in Tuesday, April 7th 2009   under: Announcements, Sysadmin    Tags: ,    

DSBL announced that their database servers are now gone and unlikely to return. If your mail server uses DSBL, this can cause it to be slow at receiving messages and not receive some mail.

…click here to read more

no comment
« Older Entries