Wifi Password Recovery - UTM - Vulnerability Scanning


VIP LOUNGE
CLOUD LOGIN
Sun Sun Sun

You are here: News > News > Data Breach Lawsuit Aimed at Security Auditor

» IT Security NEWS
 
» 03 June 2009
Data Breach Lawsuit Aimed at Security Auditor
After CardSystems Solutions went through what proved to be one of the largest credit card data infiltrations of 2004, it went for its security auditor's report for assistance. The company should have been totally safe and protected because they were using the industry standard in data security—also known as CISP—which was flaunted as a sure way to protect data and information.

Moreover, CardSystem's auditor, Savvis Incorporated, assured them that they were nearly, if not completely, invulnerable from cyber attacks just three months before the cyber attack occurred. Those ultimately empty promises aside, 40 million credit card numbers were compromised and about 263,000 were stolen from the company in 2004.

About five years later, Savvis is now being sued by the credit card company in a novel lawsuit that, many legal experts believe, could help revolutionize the outdated and largely self-regulated security practices of the credit card industry.

They say the charges symbolize the latest developments in data hacking litigation and raises awareness on not only the accountability of companies that handle credit card information but also the liability of third parties that review and endorse the dependability of these corporations.

Andrea Matwyshyn, a business and law ethics professor at the University of Pennsylvania's Wharton School who focuses on data security matters, claims that the industry is at a decisive fork in the road where it needs to choose whether data security auditing should be a voluntary or mandatory by the force of law and regulation. Because companies regularly targeted by hackers rely mostly on security audits to assure that their data is protected, "there needs to be mechanisms developed to hold auditors accountable for the accuracy of their audits.”

The first-of-its-kind lawsuit against a security auditing firm exposes defects in the standards that were instituted by the financial industry to defend its clients from having their sensitive bank data hacked and stolen. It also highlights the uselessness of an auditing system that was supposed to assure that card processors and other similar business complied with the supposed security standards.

Credit card companies have long ballyhooed the standards and the auditing process as proof that financial transactions done under their care are trustworthy, secure, and protected. However, both RBS WorldPay and Heartland Payment Systems—a pair of processors that were certified by the same touted standards—experienced large-scale breaches in security care of enterprising hackers regardless of their certification.

All the same, the industry hopes that this recent development in network and data security will help setup a far more efficient security regulation for companies that need it the most.

 


Reviews of SecPoint.com
 
 
 
 
 

Awards & Reviews
  

  

Subscribe to our Mailing List

Customer References


About
About
SecPoint
History
Mission Statement
Vision
Management
Investment
Bank
Sponsorship
Certificates
Environment
Environment
What is RoHS Weee?
Accounting
Values
Member of Organisations
Merchandise
SecPoint Certification
Design
Status Information
Hardware Vendors
Jobs
Environment
SecPoint on social media
Twitter Facebook Youtube
Products
Products
Protector
Cloud Protector
Penetrator
Portable Penetrator
Cloud Penetrator
Free IT Security Tools
Pricing
SecPoint Brochures
SecPoint Questions FAQ
SecPoint Datasheets
SecPoint SPID Library


Partners
Partners
Become a SecPoint Affiliate
Become a SecPoint Partner
SecPoint Franchising
SecPoint Partner Lounge
News
News
Press
Product Awards
SecPoint RSS Feeds


Contact
Contact
General Contact
IT Security Products Webshop
Latest SecPoint Software Images Change Log
SecPoint FAQ Frequently Asked Questions
SecPoint on Twitter
SecPoint Sales Training Videos
SecPoint Shipping Cost
SecPoint World Wide Shipping
Support
Solutions
Anti-Spam Appliance
UTM Appliance
Penetration Testing
Proxy Appliance
SAAS
Spam Filters
Vulnerability Assessment
Vulnerability Scanner
Vulnerability Scanning
Vulnerability Scanning Appliance
Web Content Filter
Web Filter Appliance
WiFi Hacking
How essential is vulnerability
management?
What is ...?

Encyclopedia | Free Scan Statement | Link Policy | Privacy Statement | Resources | Sitemap | User Policy
© Copyright 1999-2012: SecPoint®
SecPoint ApS Noerregade 7B - 1165 Copenhagen K - Denmark
US Toll free: +1-888-704-7297 - EU: +45-70-235-245