Top 5 vulnerabilities leading to credit card data breaches

Posted on Thursday, November 29, 2007

I just sat through a presentation by Visa on PCI Compliance. Here are a few things they shared. Breaches are currently evenly split between retail/restaurant and ecommerce merchants. Over 80% of breaches are occurring at Level 4 merchants but the larger breaches at Level 1 merchants account for the majority of stolen information.

Top 5 vulnerabilities leading to credit card data breaches:

1. Storage of prohibited data
2. Un-patched systems
3. Vendor default settings and passwords (i.e. unsecure wireless networks)
4. Poorly coded web facing applications resulting in SQL injection attacks
5. Unnecessary services on servers

Other related posts:
PCI Compliance and the cost of a credit card breach
PCI Compliance basics for credit card security

Post a comment



(required, but not displayed)


(optional)


Subscribe via email

Subscribe via RSS

Search

For Starters

Categories

    Creative Commons License
    This work is licensed under a Creative Commons License.
     

    Resources

    New to processing?

    Merchant Account Quick Guides

    PCI Compliance Quick Guides

    Developer Resources

    © 2010 Braintree Payment Solutions. All rights reserved. Braintree is a registered ISO/MSP of Wells Fargo Bank, N.A., Walnut Creek, CA