pci auditing

ZDNet Resources

• sort by:
• Relevance
• Date
• Popularity

Heartland says malware breach cost $12.6 million

Heartland says malware breach cost $12.6 millionI don't think ..... that cost was calculated in the TCO from their vendors."Heartland says malware breach cost $12.6 million"They just don't want to say it, but i'll say it for them.The malware infested OS is costing them millions.Heartland you're not alone.Everyone has got...

Tags: Spyware, adware & malware, Cyberthreats, SECURITY, PCI auditing, malware, PCI, Heartland, server

Discussion threads 2009-05-08

Additional Resources

End-to-end encryption is the key to protecting data and reputations

In order to avoid the financial and brand damage associated with data breaches, businesses need to consider deploying end-to-end encryption as a tamper proof way of securing data. Commentary - Media outlets around the globe highlight new data breaches at an alarmingly regular rate. Forrester estimates that the cost...

Tags: PCI, Organization, Data Breach, PCI DSS, Encryption Key, encryption, security, Paul Meadowcroft Thales, Special to ZDNet, Paul Meadowcroft, Thales, Special to ZDNet

News items 2009-11-11

Pumping Up IT Muscle Helps This Fitness Equipment Leader Gain PCI Strength

Headquartered in Vancouver, Washington, Nautilus, Inc. is a global fitness products company providing innovative, quality solutions to help people achieve a healthy lifestyle. The challenge was to deploy an automated method for meeting regulatory compliance, to find a proactive method for detecting unauthorized changes and to reduce time spent investigating...

Tags: Information Technology, PCI, Leader, Tripwire, Tripwire Enterprise, Change Management, Leadership, Tools & Techniques, Management

Case studies 2009-07-18

DotDefender for IIS 3.85 (Windows)

DotDefender provides plug-and-play protection against SQL Injection, Cross-site scripting, Path Traversal, and many other application attacks. Web server security is achieved by rapid deployment of dotDefender as a software plug-in. Residing on the web server, DotDefender can be installed and implemented in minutes without influence on traffic or network architecture....

Tags: Web Server, Auditing, Microsoft Windows, Web Site, Microsoft IIS Server, Applicure Technologies, DotDefender, Web Server Security, Web Site Development, Web Servers, Web Technology, Security, Internet

Software downloads 2009-06-09

How Dell IT Simplified Database Security for SOX, PCI, SAS 70

The attendee of this webcast will learn how to simplify database security and compliance - without impacting performance or creating more work for the DBAs and security teams. The attendee will also learn how Dell's IT group replaced its homegrown scripts and native database auditing with Guardium's automated, cross-DBMS platform...

Tags: Guardium, Security, Dell Computer Corp., Database, Sarbanes-Oxley Act, Information Technology, Auditing, PCI, SAS Institute

Webcasts 2009-01-01

Controlling, Delegating, Logging and Auditing UNIX/Linux Root Actions

This document discusses the use of Symark PowerBroker software to address some of the security and audit problems inherent in native UNIX and Linux operating systems. The purpose of the document is to demonstrate the value of PowerBroker as a tool for eliminating or reducing risk in environments where information...

Tags: Symark Software, Auditing, Linux, UNIX, Operating Systems, Financial Accounting, Software, Finance

White papers 2009-01-01

Monitoring Privileged Users With NetIQ Change Guardian for Windows

Monitoring the privileged users is a best practice in IT and a requirement for complying with a number of standards, including the Payment Card Industry Data Security Standard (PCI-DSS). Many of the current monitoring approaches, such as native auditing, file integrity checking or kernel shims, can fail to provide either...

Tags: NetIQ Corp., Monitoring, Microsoft Windows, Operating Systems, Software

Webcasts 2009-01-01

Best Practices for Database Security & Compliance

Now, more than ever, enterprises are looking to protect sensitive corporate data while reducing the cost of compliance. The attendee of this webcast will learn best practices for safeguarding enterprise data while addressing compliance requirements such as SOX, PCI and data privacy laws. The attendee will also benefit from Forrester's...

Tags: Guardium, Auditing, Compliance, Best Practice, Databases, Enterprise Software, Software, Data Management

Webcasts 2009-01-01

Firesec 2 (Windows)

Firesec is a comprehensive solution for firewall rule base analysis in medium to large enterprise environments. Firesec provides multiple functions such as removing redundant rules, grouping similar rules, and searching for vulnerable rule patterns. It also comes along with a PCI DSS compliance module that aids auditing. Firesec supports Cisco,...

Tags: Network Intelligence, Compliance, Microsoft Windows, Firesec, Firewalls, Network Security, Networking

Software downloads 2008-06-19

More bad news for McAfee, HackerSafe certification

More bad news for McAfee, HackerSafe certificationSpeaking of Payment Card Industry...Do you know that [url=http://blogs.zdnet.com/security/?p=941]PCI security standard endangers wireless LANs[/url]? :)This is similar to problems...with financial auditors be paid by the company they are auditing. The auditors don't like issuing qualified opinions on financial statements prepared by the company signing...

Tags: Quality, Financial accounting, McAfee Inc., HackerSafe, certification, almighty

Discussion threads 2008-05-01

Using Likewise to Comply With the PCI Data Security Standard

This paper describes how Likewise and Microsoft Active Directory can foster compliance with the Payment Card Industry Data Security Standard, a set of requirements for businesses that process payment card information. Developed by Visa, American Express, Discover Financial Services, and other members of the PCI Security Standards Council, the standard...

Tags: Payment, Likewise Software, Operational Accounting, PCI, Finance, Storage, Hardware

White papers 2007-12-04

DB2 Security and PCI Compliance: A Best Practices Guide

PCI is a set of collaborative security requirements for the protection of credit card transactions and cardholder data for all brands. This paper will review DB2 solutions that are compliant to the requirements for data at rest encryption in the PCI Data Security Standard and are based on a design...

Tags: Best Practice, Encryption, IBM DB2, Protegrity, PCI, Security, Storage, Hardware

White papers 2007-10-19

Automated Event Log Management for PCI DSS Compliance

Hardware and software components on corporate networks generate a wealth of network activity information in the form of event log records. Utilizing and making sense of these records is however a slow and tedious process; one which often leads systems administrators to give up on using event logs as their...

Tags: Event, Network, GFI Software Ltd., PCI, Networking, Storage, Hardware

White papers 2007-07-05

RSA enVision Platform Helps Giant Eagle to Comply With the PCI Standard

Giant Eagle had been manually tracking log files to comply with Sarbanes-Oxley SOX and the Health Insurance Portability and Accountability Act HIPAA, but this was a very time-consuming process that was a major drain on IT resources. When faced with compliance with Payment Card Industry PCI Data Security Standard DSS...

Tags: RSA Security Inc., PCI, Regulatory Compliance, Hipaa, Sarbanes-Oxley, Regulations, Human Resources, Policies And Procedures, Healthcare, Government, Financial Accounting, Finance

Case studies 2007-04-01

How to Achieve Compliance With Payment Card Industry (PCI) Data Protection Clauses and Protect Against Data Breaches

With the severity of recent data breaches, anxiety in the security and compliance community has reached a new high. Questions are being asked about what it means to be PCI compliant, particularly in the context of protecting data from data breaches. This paper describes two PCI requirements for cardholder data...

Tags: Payment, Compliance, TIZOR, Questions, Operational Accounting, Finance

White papers 2007-03-29

Podcast: How You Can Simultaneously Modify All Windows Services

Listen to this podcast to learn about Lieberman Software's Service Account Manager 5.04, a time-saving tool for Windows administrators that remotely accesses, analyzes, and modifies Windows service properties concurrently on all managed systems. With Service Account Manager SAM, you can quickly and easily: Change service dependencies ...

Tags: Lieberman Software Corp, Podcasts, Microsoft Windows, Security, Internet, Operating Systems, Software

Download resources 2007-02-01

Enabling Compliance With the PCI Data Security Standards

The PCI standards place substantial new data protection burdens on companies, but one can embrace this opportunity to examine the security of one's data and install CoreGuard to fill the gaps in the data protection efforts. CoreGuard provides a single affordable tool to meet many of the PCI requirements that...

Tags: Data Protection, Compliance, Vormetric, Standards, CoreGuard, Disaster Recovery, Backups, PCI, Data Management, Storage, Hardware

White papers 2006-12-04