In response to my request for a statement, a spokesperson for RBS WorldPay sent this statement: RBS WorldPay received its Payment Card Industry (PCI) Report on Compliance (ROC) in June of 2008 by a qualified assessor. Visa has asked us to obtain a new certification of PCI compliance because of the recent data-security compromise. Visa…
Category: Malware
Visa puts Heartland on probation over breach — but what about RBS WorldPay?
Anthony M. Freed of Information Security Resources reports that Visa has put Heartland Payment Systems on probation. As of February 11, 2009 Visa’s Global List of PCI DSS Validated Service Providers had asterisked Heartland Payment Systems as being under review. Heartland is not on the March 12th list. The following quotes from Visa’s announcement are…
USAID.gov compromised, malware and exploits served
Dancho Danchev of ZDnet reportsthat the Azerbaijan section at the United States Agency for International Development (azerbaijan.usaid.gov) has been compromised and is embedded with malware and exploits serving scripts since approximately March 1. He also provides a dissection of the attack. There’s a YouTube video from AVG as well, although it’s either somewhat blurry or…
Bits ‘n Pieces
In the justice system: John Shiefer, the Los Angeles computer security consultant who turned thousands of computers into zombies, was sentenced to four years in prison. More. Four Arizona men accused of spending more than $1 million using stolen credit cards are being held in a Maricopa County jail; they allegedly obtained the card numbers…
Western Oklahoma State College alerts library users of data breach
The Associated Press is reporting that about 1,500 users of the college’s library may have had their Social Security numbers and other personal information exposed because of a computer breach that occurred on November 11, but wasn’t discovered until February 18. No details of the breach have been provided yet. (Thanks to Wilma of the…
When everything old is new again?
In what comes as no real surprise to me based on what I had been thinking, Jaikumar of Computerworld reports: Days after Visa Inc. seemingly confirmed that a data breach had taken place at a third payment processor, following on the recent breach disclosures by Heartland Payment Systems Inc. and RBS WorldPay Inc., the credit…