Profile

Cover photo
NTT Security Limited
54 followers|25,326 views
AboutPostsPhotosYouTube

Stream

NTT Security Limited

Shared publicly  - 
 
On the 1st of May 2016, Visa Europe mandate officially went live. However, Europe is not the only region that must become more secure in terms of cyber security as Visa has also updated the mandate for Acquirers in the United States and Canada, regarding small merchant breaches. The organisation has now unveiled the deadlines for this update.
1
Add a comment...

NTT Security Limited

Shared publicly  - 
 
Organisations must continuously review results from the most recent penetration tests which have to cover all segmentation methods (making sure that they are operational, effective and “isolate all out-of-scope systems from inscope systems”).
Organisations must review results from the most recent penetration tests (ethical hacking activities) which have to cover all segmentation methods.
1
Add a comment...

NTT Security Limited

Shared publicly  - 
 
A trusted team of QSAs will be not only able to assess your organisation and let your prove your compliance in a particular moment in time, they will also help you staying up to date with the news and the changes in the industry, explaining to your team the increasing risks related to the payment landscape.
A trusted team of QSAs is able to assess your organisation and let your prove your PCI compliance. NTT Security is one of the leading QSAs in Europe.
1
Add a comment...

NTT Security Limited

Shared publicly  - 
 
Called KeRanger, the ransomware has been detailed by researchers at Palo Alto Networks, with the firm also saying that once the malware finds its way onto a Mac machine, the Mac will usually be held for ransom within three days. Many users found their devices infected after installing installed version 2.90 of popular Mac BitTorrent client Transmission.
Apple faces the first ransomware attack: KeRanger. How does it work and what should you do to protect yourself against it and other threats?
1
Add a comment...

NTT Security Limited

Shared publicly  - 
 
Once the QSA has validated your compliance – and only then – they will provide you with a trust guard, a logo, or something similar which you can place on your website to prove to customers and clients that you are compliant.
You are now PCI DSS Compliant and you have been validated by your preferred QSA organization. How can you show the world that you are PCI DSS?
1
Add a comment...

NTT Security Limited

Shared publicly  - 
 
One change that is confirmed is the increased deadline for replacing of the insecure SSL and TLS versions with their current and secure counterparts, which has bee set as 30 June 2018. What the Council’s CTO Troy Leach hinted at in a blog post interview on the PCI SSC’s website is some additional potential changes which are still being evaluated.
PCI DSS 3.2 revisions have not yet been detailed in full but businesses can prepare by ensuring that they are compliant with the PCI DSS 3.1.
1
Add a comment...

NTT Security Limited

Shared publicly  - 
 
PCI Council has released PCI DSS 3.2, the new version the Payment Card Industry Data Security Standard (PCI DSS). The news was spread yesterday 28th of April 2016. A few changes have been brought to the Data Security Standard (one of the major ones is the introduction of the Designated Entities Supplemental Validation criteria - DESV as an appendix to the standard) together with the creation of new requirements and additional guidance for existing ones.
The PCI Council (PCI SSC) has released the new version the Payment Card Industry Data Security Standard (PCI DSS 3.2). Discover the changes.
1
Add a comment...

NTT Security Limited

Shared publicly  - 
 
In October 2015, ESET compiled the results of a study that aimed to see whether UK consumers are "cyber savvy" or have a good cyber IQ. Basic and intermediate questions were asked about a range of IT security topics, “the majority of which were answered incorrectly”.
ESET compiled the results of a study aimed to see whether employees have a good level of cyber security awareness. The majority answered incorrectly.
1
Add a comment...

NTT Security Limited

Shared publicly  - 
 
A report published by Financial Fraud Action UK (FFA UK), which uses statistics gathered from its members (these include “major banks, credit, debit and charge card issuers, and card payment acquirers”) states that although there were £1.76 billion of prevented losses in the UK in 2015, the UK also saw £755 million in losses that FFA UK members were unable to prevent. This is “equivalent to £7 in every £10 of attempted fraud being stopped,” explains the organisation.
1
Add a comment...

NTT Security Limited

Shared publicly  - 
 
MasterCard mandate states that European retailers must ensure that by 2020, all of their point-of-sale (PoS) devices are contactless-enabled.
The MasterCard Mandate states that all the PoS devices must be contactless enabled by 2020. Are you ready for the switch? Are you keeping them protected?
1
Add a comment...

NTT Security Limited

Shared publicly  - 
 
This vulnerability can affect HTTPS as well as other services (cryptographic protocols) that use SSL (Secure Sockets Layer) and TLS (Transport Layer Security). Specifically, DROWN works by exploiting misconfigurations where the server supports SSLv2 - which was developed in the 1990s - and the hackers use the intercepted information to decrypt modern TLS connections. Despite the known security issues with SSL version 2, as it is not widely used, it has also been widely ignored and unchecked.
DROWN affects SSL (Secure Sockets Layer) and early TLS (Transport Layer Security). it works by exploiting misconfigurations of servers using SSLv2.
1
Add a comment...

NTT Security Limited

Shared publicly  - 
 
SAQ P2PE-HW is only for merchants that use card-present type of transactions, which means that it is not applicable to organisations that deal in e-commerce. Moreover, in order to be eligible these merchants must not store any cardholder data and they must also protect cardholder data using a validated point to point encryption (P2PE) solution.
SAQ P2PE-HW is for merchants that use card-present type of transactions, which means that it is not applicable to organisations that deal in e-commerce.
1
Add a comment...
Story
Tagline
Stay in control of your risks
Introduction
NTT Security Ltd was established in 2009, combining both PCI DSS assessment and validation knowledge with technical security expertise.

This merging of these competencies created the formal QSA platform from which NTT Security operates today. NTT Security’s employees have a genuine passion and enthusiasm for their work. The NTT Security team has extensive field experience and are very well qualified, certifications include: PCI/PA QSA, CISSP, CISA, CISM, ITIL and CSSLP.

Specializing in payment service providers, NTT Security can count major players among its client portfolio covering a wide range of industries from the banking, public, insurance, to travel, retail, telecom and energy sectors. We are committed to, and proud of, the quality of the services we provide from project management to the timely delivery and ultimate support of each named service.

NTT Security’s experienced technical and security testing teams are responsible for the delivery of the secure code review, a complete secure Software Development Lifecycle (SDLC) analysis and the phase-by-phase execution of penetration testing services.

Contact us and follow us on:

NTT Security Blog - http://blog.ntt-security.com/
Contact Information
Contact info
Phone
+353 (0)1 5065556
Address
Block 4, Harcourt Centre Harcourt Road Dublin, Ireland