Language Selection

English French German Italian Portuguese Spanish

Security fix installed after breach

Filed under
Security

The operations center for a credit card processing firm whose security was breached by a hacker, exposing 40 million accounts to possible fraud, has put new security software in place.

Marc Maiffret, a computer security specialist and co-founder of eEye Digital Security of Aliso Viejo, Calif., said his firm installed the security upgrade for Atlanta-based CardSystems Solutions' operations center here on June 10.

On Friday, MasterCard International Inc. disclosed that 40 million credit card accounts belonging to it and other companies were exposed to possible fraud by a security breach at CardSystems Solutions' operations center here, the latest in a string of recent breaches at financial institutions.

Maiffret told the Arizona Daily Star that the upgrade his firm sold CardSystems Solutions was in place three days later. CardSystems may have initiated other measures as well in response to the breach, he added.

Calls to Maiffret and spokesmen for eEye Digital and CardSystems Solutions were not returned immediately Thursday.

CardSystems Solutions is among a large number of companies processing financial transactions for credit card issuers that largely use custom-made software applications not initially designed with security components as their foremost need, Maiffret said.

In addition, such third-party companies frequently must contend with budget constraints causing them to be stingy on computer security, Maiffret said.

Those settings make for favorable conditions for a skilled hacker to manipulate his way through a computer program seeking vulnerabilities, he added.

"There is really no standard for how all this financial information gets pushed around, and all these companies push it around a little differently," Maiffret told the Star.

"That means you also have all these little quirks and opportunities for a hacker who has the time to find weaknesses."

Associated Press

More in Tux Machines

Linux, Graphics, and Linux Foundation

Leftovers: Debian and Ubuntu

  • CD/DVD Image Changes For The Upcoming Debian 9.0 Release
    With Debian 9.0 not being far away from releasing, the Debian CD Images Team has issued an update over their fundamental changes happening for this "Stretch" cycle.
  • The System76 'Galago Pro' laptop looks fantastic, $50 off for a few more days
    The Galago Pro looks like an incredibly stylish device ready for the masses with a slick aluminium casing, instead of the always cheap feeling plastic cases most tend to come with. It's slim, but best of all incredibly light for such a device at 1.3kg (2.87 lbs). It comes with Ubuntu 16.04.2 LTS or Ubuntu 17.04, a speedy 7th Gen Intel in either an i5 7200U or i7 7500U and Intel® HD Graphics 620.
  • Download Ubuntu 17.10 daily builds
    The release schedule for Ubuntu 17.10 has been announced, and you can now download the daily build ISO images as well. Daily builds can be useful to watch the progress of Ubuntu 17.10, but are not recommended for normal usage due to possible bugs and changes.

Leftovers: Software

  • GJS: What’s next?
    In my last post, I went into detail about all the new stuff that GJS brought to GNOME 3.24. Now, it’s time to talk about the near future: what GJS will bring to GNOME 3.26.
  • Sending SMS from Linux Just Got Easier with Latest Indicator KDE Connect Update
    Indicator KDE Connect now has Google Contacts integration, making it even easier to send text messages from the Linux desktop.
  • Cumulus Qt is a Lightweight Weather App for Linux
    Cumulus Qt is a Qt weather app for the Linux desktop. It's lightweight, has a bold, striking design inspired by Stormcloud, and is very customisable.
  • Vivaldi 1.10 Browser Now in Development, Will Introduce Docked Developer Tools
    Vivaldi's Ruarí Ødegaard just informed us a few moments ago that Vivaldi 1.10 will be the next major version of the free and cross-platform web browser based on the latest Chromium technologies, not Vivaldi 2.0 as many of you have hoped. Vivaldi 1.9 just hit the streets the other day as world's first web browser to ship with the Ecosia search engine enabled by default to help reforest the plane, and it now looks like Vivaldi's devs never sleep, and development of Vivaldi 1.10 starts today with the first snapshot, Vivaldi 1.10.829.3, which introduces a long-anticipated feature: Docked Developer Tools!

today's howtos