by Natasja Bolton, Acquirer Support Manager Most small and medium-sized merchants rely on an online compliance portal, such as our Sysnet.air solution, to determine the appropriate SAQ for their PCI DSS self-assessment. SAQ determination is based on the merchant’s completion of a series of questions on their payment channels and payment processing methods. For many merchants […]
Global data breach and security threat reports continue to highlight that all organisations both large and small may be subject to cyber attacks. As Forbes pointed out in a recent article, in 2014 “60 percent of all targeted attacks struck small- and medium-sized organizations”. In previous blog entries, we discussed that these smaller organisations […]
by Dr. Grigorios Fragkos, VP Cybersecurity In this article we will see how cybercriminals combine attack tactics in order to infiltrate businesses. All staff in an organisation, including the CEO and the board of directors, need to be not only aware of the emerging threats currently been seen in the wild, but also be cyber-aware […]
In our experience, getting merchants compliant is not unlike carrying out a sales campaign, it can sometimes take quite a few calls to successfully engage merchants in the process. Studies show that 80 Percent of successful sales require five follow-up calls. Though it seldom takes that many calls to get merchants compliant, sometimes a […]
by Dr. Grigorios Fragkos, VP Cybersecurity Two new malware files have been identified targeting point-of-sale (POS) terminals called AbaddonPOS and Cherry Picker. The AbaddoPOS malware is delivered by the Angler Exploit Kit or through an infected Microsoft Office document. The malware targets the memory of all processes running on the infected system (excluding its own […]
Outsourcing makes sense and is widely practiced by many organisations for all sorts of business processes. However, within the payments industry, one area where outsourcing is not so readily embraced is that of merchant contact services and with good reason. One of the primary disadvantages of outsourcing this service is the lack of customer focus. […]
Most small businesses know that their customers’ loyalty is key to their success and constantly strive to keep their customers happy and coming back time and time again. However, many don’t realise that failing to secure their customers sensitive payment information, puts not only their customers’ loyalty but also the survival of their business at […]
by Jason McWhirr, IS Consultant Not surprisingly, most retailers are focussed on their customers and sales, using the tools that best facilitate that, not on security systems to protect cardholder data – despite the hazards that a data breach could present. Sysnet’s contact centre and acquirer support teams help retail merchants with their annual […]
We have been listening closely to our clients to understand the challenges they face day to day around their PCI DSS requirements. One of the most common difficulties facing acquiring organisations is around the management of compliance of their account managed merchant customers. Difficulties can range from the collection and collation of data, tracking […]
With the EMV deadline of October 1st 2015 here and gone a reported 85% of merchants not being aware of the financial and legal liabilities they’ll be responsible for, we look at what impact it will have on merchants. In the infographic “Bye, bye magnetic-stripe, hello microchips” we examine the key impacts the EMV […]
With 85% of merchant businesses unaware of the financial and legal liabilities they’ll be responsible for starting at the beginning of October, we take a look at the key impacts that will affect these businesses. “Download our whitepaper: Taking-Care-of-Business-in-the-U.S. where we examine what the impact the EMV roll out will have on merchants and list potential […]
Helping our client’s customers to meet their compliance requirements as quickly and as painlessly as possible are key goals for Sysnet’s white labelled compliance management solution. Just one of the ways we achieve these goals is to provide download-able information a security policy template. This policy template is designed to assist customers with protecting their […]
Managing the PCI compliance of large, complex merchants is a real challenge for acquiring organisations. Working with some of the world’s largest acquirers has given Sysnet a deep insight into how those organisations manage their VIP merchants’ PCI DSS compliance and associated reporting requirements and more importantly, into the common issues they face when managing […]
This paper considers the impact of EMV on payment card fraud taking evidence from established EMV markets, mainly focusing on the UK. It will also discuss the impact that the introduction of EMV has had on card-not-present (CNP) fraud, and the steps that have been taken to help manage the risks associated with CNP fraud. Read more […]
Though the road to PCI compliance can at times feel daunting, getting started with the process and taking it step by step is often the best way to proceed. Achieving and maintaining compliance with the PCI Data Security Standard is an ongoing cycle with three distinct steps: Assess, Remediate and Report. Remember that businesses […]
The Payment Card Industry Data Security Standard or PCI DSS for short is a compliance standard that defines data security requirements relating to the processing, storage or transmission of cardholder data. The PCI DSS was founded in December 2004 by 5 major card brands – Visa, Mastercard, American Express, Discover and JCB. In 2006, the […]
All businesses that accept payment cards for goods or services, regardless of size, have important obligations that they must be aware of. Credit and debit card information is extremely valuable and businesses must therefore be aware that they are responsible for the security of this data, from the moment they take a card for payment […]
