Feed on
Posts
Comments

Monthly Archive for October, 2008

I few years ago I started to tell consultant firms that they have to start deliver secure solutions by default and that not delivering would lead to losing business. Sadly I got this confirmed from a partner today who have been contracted to review several applications delivered by different consultant firms with the specific goal […]

Read Full Post »

I read a very interesting article today regarding a very interesting manipulation of payment terminals. The fraud was very complicated and had an international reach. From a PCI DSS perspective this is more or less not handled today. Yes, the terminals should be PED approved but what if the supplier has a security breach or […]

Read Full Post »