A new app helps companies with data breach notification compliance. The free app was developed by the law firm Fox Rothschild to help retailers better understand the myriad state laws, federal statutes and additional resources.
Breach notification compliance is challenging "because we don't have a national standard or a federal statute on data breach notification, but we have literally 46 different state [laws]," said Scott Vernick, a partner at the law firm, in an interview with Information Security Media Group. "We just thought that we would try to create something that would be useful to privacy professionals and in-house counsel who are trying to respond to breaches by putting information at their fingertips."
Google has snapped up SlickLogin, an Israeli security start-up that created new sound authentication technology to replace online passwords.
A new Verizon report has found that many businesses, following their annual assessment for meeting the Payment Card Industry Data Security Standard, fail to maintain ongoing compliance -- putting the businesses at an increased risk for data breaches and the subsequent financial repercussions and damages to reputations.
The Retail Industry Leaders Association (RILA) announced the latest in a string of partnerships to enhance cybersecurity in the wake of data breaches at several retailers including Target, Neiman Marcus and Michaels Stores.
The new partnership with the National Cyber-Forensics and Training Alliance (NCFTA) is positioned to enhance cybersecurity information sharing and expand retailers' proactive and vigilant approach to cyber threats to protect consumers against criminals. Partnering with the NCFTA is one of several approaches RILA is taking to enhance collaboration across the entire payments system. Last week, RILA announced it is joining forces with the Financial Services Roundtable to lead a partnership between the merchant and financial services industries.
A new database now lets consumers opt-out of location analytics, essentially hiding them from companies seeking to access mobile devices for analytic purposes.
The Future of Privacy Forum (FPF), a Washington, D.C.-based think tank seeking to advance responsible data use and consumer privacy, and The Wireless Registry, the first global registry of wireless names and identifiers, launched the new platform that will allow consumers to easily and quickly opt-out of mobile location analytics at thousands of locations in the U.S.
Target computer security personnel may have raised concerns about potential vulnerabilities in the retailer's system in advance of the November 2013 data breach.
The recent payment breaches highlight the need for the U.S. to move more quickly to EMV chip payment cards and PINs, speakers at the 2014 Smart Card Alliance Payments Summit said last week.
A Walmart executive said the retailer has been very proactive in its EMV chip implementation and has EMV chip-enabled terminals in all of its U.S. stores. 118 of its stores are ready to accept chip transactions. John Drechny of Walmart advocated for the "the elimination of signature as a cardholder verification method."
It is so unfortunate and strange that Target's massive data breach can be traced back to one vendor. An HVAC vendor at that. However, that is what investigators found after the months-long investigation into the breach.
In July of 2013, Forbes warned that China-based e-commerce giant Alibaba is a huge threat to Amazon, Walmart and all other major U.S. retailers. After all, the business publication pointed out, Alibaba's portals handled gross sales of $170 billion in 2012 – more than Amazon and eBay's gross sales combined. It looks like Forbes was foreshadowing what was to come.
The massive card breach that cost Target, Michaels and other retailers millions of dollars is likely what fueled new policy goals from the Retail Industry Leaders Association (RILA).
Square announced its partnership with Whole Foods Market with much fanfare earlier this week. As the mobile payments tech provider should. While Square is used primarily by independent retailers and restaurants, this is Square's first deal with a major national grocery chain.
And it signifies consumers' growing acceptance of mobile payments. In the not-too-distant future, major brick-and-mortar chains that don't offer fast, easy payment systems like Square will be the anomaly. Grocery chains are the perfect market for this payment tool. Long lines at grocery stores are one of shoppers' biggest complaints, and are the reason many chains added self-checkout lanes. Then, after consumer backlash over the lack of human cashiers, some grocers did away with those lanes. Square offers a much better option.
UPS and other carriers raised their shipping rates in January, much to the chagrin of U.S. e-commerce retailers. Now, some industry observers believe Amazon may be the cause of the price hikes.
After much speculation Microsoft has named Satya Nadella as its new CEO, succeeding Steve Ballmer, who is retiring. In his new role, Nadella will develop a mobile-first cloud-first strategy to grow the company.
Target will adopt chip and PIN technology six months ahead of Visa and MasterCard's October 2015 deadline as executives push for wider adoption of the technology.
Amazon.com plans to introduce an in-store POS system using Kindle tablets. It's a genius move for the online retailer, but a terrible one for brick and mortar folks.
Recent security breaches lead the news and consumers are increasingly suspicious of possible credit card fraud. When it comes to data security, retailers run the gamut from perfect to poor.
In a statement submitted today to the U.S. Senate Committee on Banking, Housing & Urban Affairs Subcommittee on National Security and International Trade and Finance, the Retail Industry Leaders Association (RILA) highlighted the importance of collaboration among retailers, banks and card networks to advance payments security to prevent future cyberattacks. The letter was submitted for the record ahead of the Subcommittee hearing, "Safeguarding Consumers' Financial Data."