A “secure password”— many data security experts would argue that it’s an oxymoron. For the longest time, passwords have been considered an extremely weak and easy to crack form of authentication, even if you don’t take into account the fact that the most popular password in the world is still ‘123456’. Over the last couple […]
About Kuanyi Twang
This author has yet to write their bio.Meanwhile lets just say that we are proud Kuanyi Twang contributed a whooping 84 entries.
Entries by Kuanyi Twang
The Payment Card Industry Data Security Standard (PCI DSS) is the security standard to concern yourself with, if you’re running a business dealing with credit cards. Like most other security standards, the PCI DSS is an evolving one, advocating new safeguards or moving away from newly discovered vulnerabilities (such as SSL/ early TLS). But as […]
To your everyday man on the street, Verizon Communications is an American broadband and telecommunications company. But to those of us in the IT security line, Verizon is also one of the frontliners in the fight against cybercrime, responsible for helping many Fortune 500 companies respond to massive data breaches. But in a tragic turn […]
If you like not getting hacked, bad news — pretty much nothing, from our web browsers to our operating systems, are hack-proof. In just the last week, white hat hackers have found exploits in nearly everything that we use to connect to the Internet.
When it comes to PCI assessments there are three main parties involved: the business, the QSAs, and the PCI Council. The audited, the auditors, and the standard setters. And while there has been a lot of focus on companies failing to protect sensitive data, and also media attention focused on the PCI standard and its […]
The video-messaging giant Snapchat recently announced on their blog that they have suffered a data breach that lost them the personal information of roughly 700 of their current or former employees.
“We do not negotiate with terrorists”. Except, most of us have, or would. A relatively new breed of malware, dubbed “Ransomware”, is holding computer systems hostage and demanding payment for their safe release. What’s surprising is that these underhanded tactics often see a payout for cybercriminals — according to one study, about 50% of […]
The PCI Council has officially announced that the next minor release of the PCI DSS standard will be released in the first half of 2016. PCI DSS 3.2 primarily addresses the revised migration dates away from SSL/early TLS. As mentioned at the PCI London event which took place earlier this year, the new migration deadline will […]
Snitches get stitches. It’s an old saying, indicating that tattling on others is a punishable offense. But starting as early as this year, Australian companies may have to start snitching on themselves if they suffer a data breach, and nurse the stitches that come along with it.
German code-breakers have found a new flaw in German payment terminals, specifically for credit cards, that allegedly allows hackers to both swiftly and quietly uncover credit card pin numbers and magnetic strip data.