October 2, 2019, Dublin, Ireland – Atlanta, Georgia – London, United Kingdom – Sysnet Global Solutions has announced the launch of its PCI DSS solution designed to help payment facilitators, their sub-merchants, and their Acquirers increase PCI compliance and reduce risk. The PCI DSS (Payment Card Industry Data Security Standard) is a set of […]
Mastercard has set a deadline for acquiring organisations to manage risk in their Level 4 Merchant portfolio. Mastercard’s updated Site Data Protection (SDP) Program rules expect PCI DSS compliance validation from your high-risk merchants. Mastercard requires all acquirers to have a Level 4 risk management programme in place to meet the updated SDP requirements. […]
by Michael Hopewell, Managing Information Security Consultant. Introduction Many businesses have heard about Point to Point Encryption (P2PE). Point of Sale vendors, service providers and others often mention its benefits to businesses: P2PE can reduce risk to payment card data by rendering it unreadable, minimise the number of systems and networks in scope for […]
In previous articles we have provided guidance on how organisations can protect themselves from ransomware and make sure they are prepared should they be hit by ransomware. Ransomware attacks are a successful and highly profitable criminal business model and, as we predicted in early 2017, ransomware attacks have continued to proliferate. Ransomware is a […]
Compliance with the PCI DSS (Payment Card Industry Data Security Standard) is mandatory for all businesses accepting cards for payment. The Standard ensures appropriate security protocols are applied to your payment acceptance environment to protect against fraud. In its simplest form, the process of achieving compliance involves a scoping (or profiling) stage, which determines […]
On the 17th May 2018, the PCI SSC published the latest version of the PCI Data Security Standard: the PCI DSS v3.2.1. In this article we look at the changes that have been included in the updated Standard. These are also discussed in the PCI SSC’s summary of changes document. A new standard? This […]
JUMP TO THE INFOGRAPHICS RELATED TO THIS BLOG POST >>> We see and hear many articles in the media about data breaches and talk of millions of records being stolen by faceless cybercriminals. But once this data is stolen and obtained by the individual or criminal organisation, what do they do with […]
Though there have been regular news stories of companies that have suffered data breaches, many smaller businesses are still failing to view cyber security as a major priority. Often the reasoning behind this is that they don’t believe that their business will be targeted due to its size, they think that they don’t have valuable […]
Continuing on with our series of articles that focuses on challenges that many smaller businesses have, in this paper we highlight the risks cyber security poses to small businesses. We discuss how company data can be monetised by cybercriminals, why small businesses are at risk and the real cost of ignoring cyber security issues. Share […]
Cyber security is a wide-ranging term that can relate to a plethora of complicated issues that are far above the head of the average person. However, small businesses can take strides towards making themselves more secure by taking simple steps to secure their information by avoiding negligent security habits. These small practices begin with […]
By Natasja Bolton, Senior Acquirer Support QSA With the increase of malware and other malicious cyber security attacks that have had a global impact in the last few years, governments around the world have been trying to implement concrete safeguards through regulation. The goal of these regulations being to not only protect valuable infrastructure services […]
By Mat Clarke, Information Security Analyst Let’s face it, putting in place the plans and procedures necessary to support a forensic breach investigation isn’t a job which is likely to end in glory (in most cases, the best outcome is that you never have to use them). Nevertheless, it should be recognised that laying the […]
May 17th 2017. Today, Sysnet Global Solutions a leading provider of cyber security and compliance solutions to the payments industry, announced that it has partnered with Elavon Merchant Services to develop Secured Pro; a managed PCI compliance validation and cyber security service that offers enhanced protection against fraud and payment security breaches. “A new […]
Information Security is complex. Understanding risk and implementing appropriate mitigating controls, be they technical or otherwise, is a challenge for organisations of any size. There is no getting away from that, but witchcraft?
In a previous article, written by Sysnet’s Paul Prior, Paul mentioned how he believed that a change was necessary in the industry. A move away from using non-compliance fees as a mechanism to drive engagement and compliance. He highlighted that most of Sysnet’s clients are evangelising the importance of PCI DSS, however not […]
By Natasja Bolton, Senior Acquirer Support QSA October 2016 is Cyber Security Awareness Month which runs under the banner of STOP. THINK. CONNECT, and aims to help everyone (private citizens and businesses) to stay safer and more secure online. We believe it is a great opportunity to reach out to your small to medium business […]
With ransomware showing no signs of disappearing soon, a central repository website entitled “No-More-Ransom” has been established to disrupt cybercriminal businesses with ransomware connections. Europol’s European Cybercrime Centre has teamed up with the National High Tech Crime Unit of the Netherlands’ police, and two cyber security companies to offer advice and troubleshooting services. A […]
Security and compliance is a lot like having to do taxes, it’s a chore. Most businesses understand that it is important to be secure and compliant, but the complexity and time that it can take can indeed be off putting. In fact some businesses turn to accountants to look after their compliance with standards such […]
Global data breach and security threat reports continue to highlight that all organisations both large and small may be subject to cyber attacks. As Forbes pointed out in a recent article, in 2014 “60 percent of all targeted attacks struck small- and medium-sized organizations”. In previous blog entries, we discussed that these smaller organisations […]
Sysnet is a true global market leader in Cyber Security Risk and Assurance, providing a comprehensive range of information security consultancy and assurance services in over 48 countries. Sysnet helps some of the largest global organisations to protect their business. We count brand names such as Walmart, The AA, AXA Insurance, Direct Line Group, Bloomberg, […]
Our award-winning, cyber security and compliance management solution Sysnet.air is an award-winning, cyber security and compliance management solution that helps businesses to improve security, and acquiring organisations to reduce risk. Sysnet.air has been designed to simplify security and compliance for small to medium sized businesses (SMBs) by profiling the business and personalising service offerings […]
by Dr. Grigorios Fragkos, Senior Information Security Consultant, SysnetLabs It is not the first time a military term is being used by the Information Security community in order to describe an Information Assurance process. Operations Security (OPSEC) is a military term referring to the protection of different types of unclassified information which could end up […]
Physical Security Assessments can be viewed as a penetration test against the physical infrastructure of an organisation. Instead of the assessment of computer networks and services, buildings and physical locations are being assessed. During this type of assessment the overall physical security of the location of a building, the facilities and the access controls […]
