News

App helps companies with data breach notification compliance

A new app helps companies with data breach notification compliance. The free app was developed by the law firm Fox Rothschild to help retailers better understand the myriad state laws, federal statutes and additional resources.

Breach notification compliance is challenging "because we don't have a national standard or a federal statute on data breach notification, but we have literally 46 different state [laws]," said Scott Vernick, a partner at the law firm, in an interview with Information Security Media Group. "We just thought that we would try to create something that would be useful to privacy professionals and in-house counsel who are trying to respond to breaches by putting information at their fingertips."

Google's SlickLogin acquisition buys sound authentication technology

Google has snapped up SlickLogin, an Israeli security start-up that created new sound authentication technology to replace online passwords.

Report: Most businesses are not PCI compliant

A new Verizon report has found that many businesses, following their annual assessment for meeting the Payment Card Industry Data Security Standard, fail to maintain ongoing compliance -- putting the businesses at an increased risk for data breaches and the subsequent financial repercussions and damages to reputations.  

RILA creates (another) partnership to help fight fraud

The Retail Industry Leaders Association (RILA) announced the latest in a string of partnerships to enhance cybersecurity in the wake of data breaches at several retailers including Target, Neiman Marcus and Michaels Stores.

The new partnership with the National Cyber-Forensics and Training Alliance (NCFTA) is positioned to enhance cybersecurity information sharing and expand retailers' proactive and vigilant approach to cyber threats to protect consumers against criminals. Partnering with the NCFTA is one of several approaches RILA is taking to enhance collaboration across the entire payments system. Last week, RILA announced it is joining forces with the Financial Services Roundtable to lead a partnership between the merchant and financial services industries.

New opt-out option lets consumers dodge geofences

A new database now lets consumers opt-out of location analytics, essentially hiding them from companies seeking to access mobile devices for analytic purposes.

The Future of Privacy Forum (FPF), a Washington, D.C.-based think tank seeking to advance responsible data use and consumer privacy, and The Wireless Registry, the first global registry of wireless names and identifiers, launched the new platform that will allow consumers to easily and quickly opt-out of mobile location analytics at thousands of locations in the U.S.

Target security warned about potential vulnerabilities to attack

Target computer security personnel may have raised concerns about potential vulnerabilities in the retailer's system in advance of the November 2013 data breach.

Spotlight On…EMV cards urged at Smart Card Alliance meeting

The recent payment breaches highlight the need for the U.S. to move more quickly to EMV chip payment cards and PINs, speakers at the 2014 Smart Card Alliance Payments Summit said last week.

A Walmart executive said the retailer has been very proactive in its EMV chip implementation and has EMV chip-enabled terminals in all of its U.S. stores. 118 of its stores are ready to accept chip transactions. John Drechny of Walmart advocated for the "the elimination of signature as a cardholder verification method."

Vendor speaks out on Target data breach

It is so unfortunate and strange that Target's massive data breach can be traced back to one vendor. An HVAC vendor at that. However, that is what investigators found after the months-long investigation into the breach.

Watch out Amazon, here comes Alibaba

In July of 2013, Forbes warned that China-based e-commerce giant Alibaba is a huge threat to Amazon, Walmart and all other major U.S. retailers. After all, the business publication pointed out, Alibaba's portals handled gross sales of $170 billion in 2012 – more than Amazon and eBay's gross sales combined. It looks like Forbes was foreshadowing what was to come.

Cybersecurity, data privacy top retailers' 2014 agenda

The massive card breach that cost Target, Michaels and other retailers millions of dollars is likely what fueled new policy goals from the Retail Industry Leaders Association (RILA).

What the Square-Whole Foods deal really means

Square announced its partnership with Whole Foods Market with much fanfare earlier this week. As the mobile payments tech provider should. While Square is used primarily by independent retailers and restaurants, this is Square's first deal with a major national grocery chain.

And it signifies consumers' growing acceptance of mobile payments. In the not-too-distant future, major brick-and-mortar chains that don't offer fast, easy payment systems like Square will be the anomaly. Grocery chains are the perfect market for this payment tool. Long lines at grocery stores are one of shoppers' biggest complaints, and are the reason many chains added self-checkout lanes. Then, after consumer backlash over the lack of human cashiers, some grocers did away with those lanes. Square offers a much better option.

Is Amazon to blame for increased shipping costs?

UPS and other carriers raised their shipping rates in January, much to the chagrin of U.S. e-commerce retailers. Now, some industry observers believe Amazon may be the cause of the price hikes.

Gates and Ballmer step aside, Nadella named new Microsoft CEO

After much speculation Microsoft has named Satya Nadella as its new CEO, succeeding Steve Ballmer, who is retiring. In his new role, Nadella will develop a mobile-first cloud-first strategy to grow the company.

Target accelerating $100 million chip and PIN adoption, finds just 25 registers at fault in breach

Target will adopt chip and PIN technology six months ahead of Visa and MasterCard's October 2015 deadline as executives push for wider adoption of the technology.

Amazon wants to be your POS, don't let them

Amazon.com plans to introduce an in-store POS system using Kindle tablets. It's a genius move for the online retailer, but a terrible one for brick and mortar folks.
 

Apple, Amazon, Walmart among retail's winners and losers in data security

Recent security breaches lead the news and consumers are increasingly suspicious of possible credit card fraud. When it comes to data security, retailers run the gamut from perfect to poor.

Retailers call for collaboration to combat cyberattacks

In a statement submitted today to the U.S. Senate Committee on Banking, Housing & Urban Affairs Subcommittee on National Security and International Trade and Finance, the Retail Industry Leaders Association (RILA) highlighted the importance of collaboration among retailers, banks and card networks to advance payments security to prevent future cyberattacks. The letter was submitted for the record ahead of the Subcommittee hearing, "Safeguarding Consumers' Financial Data."