Singapore Telecommunications (Singtel) is gobbling up Chicago-based Trustwave for US$810 million. Singtel plans to combine its state-of-the-art information and communications technology (ICT) with Trustwave’s broad portfolio of managed security services.
VA-based Transaction Network Services has introduced managed POS encryption which includes support for the VeriShield Protect end-to-end encryption solution from VeriFone and Trustwave’s hardware-agnostic point-to-point encryption. The point-to-point encryption solutions will help merchants protect sensitive cardholder data.
The MRC today announced the election of Peter Bayley, Executive Director, Risk Management of Visa Europe, to its Global Board of Directors. Mr. Bayley joins the board after several years of service and dedication to the association, including his two year term on MRC’s European Advisory Board.
2Checkout released a new suite of payment API (Application Programming Interface) libraries from beta testing, letting merchants embed 2Checkout’s payment processing capabilities directly into their website. The 2Checkout Payment API libraries join 2Checkout’s hosted options: Standard Checkout and Inline Checkout. With these three checkout platforms, 2Checkout is the payments vendor with the broadest set of customizable payment methods in the world. Merchants use 2Checkout to process credit card, debit card and PayPal payments, allowing them to directly integrate 2Checkout’s technology into their website with complete coding control. They can therefore focus on designing a unique and branded checkout experience for their customers. Standard Checkout displays checkout pages based on the buyer’s device while maintaining the merchant’s unique branding. Inline Checkout provides a simple payment form that gives shoppers the appearance that they are still on the merchant’s site. The Payment API empowers merchants to integrate 2Checkout’s payment processing directly into their website with the most customization options.
Allus achieved PCI-DSS certification as part of its efforts to focus on minimizing the risk of fraud and ensures that adequate controls of all elements that can process, store or transmit credit card information are in place. Trustwave, a Qualified Security Assessor (QSA) in Colombia authorized by the PCI Council, conducted the certification process. This work began in July and for 7 months the necessary adjustments were made to comply with all the controls required by the PCI standard.
Piraeus Bank has been certified once more, according to the international PCI DSS, which lies on security of online transactions using credit and debit cards. This certification is a well-known standard and compliance obligation for all parties involved in card data management, such as merchants, credit institutions, organizations, companies, etc. It is noted that Piraeus Bank is the only bank in Greece and the broader geographic region that is PCI DSS certified, demonstrating in practice our dedication to online transactions in which the Bank has significantly invested.
Trustwave and Transaction Network Services have joined forces to offer an open and vendor agnostic point-to-point encryption service designed to help merchants protect their customers’ payment card information. TNS will host Trustwave Point-to-Point Encryption technology in its network and data centers enabling TNS to take encrypted transactions from merchants, decrypt those transactions, and securely send transaction data to one or more of a merchant’s payment processors or acquirers. The joint service will be an open platform that will interoperate with point-of-sale technologies and integrate with various payment processors.
OpSource, the SaaS delivery experts, has announced Level One compliance with PCI DSS through Trustwave information security and compliance management solutions. Through its Level One PCI DSS compliance validation, OpSource can support any on-line application, regardless of the volume of credit card information stored, processed, or transmitted. This level of compliance validation is required of any service provider supporting customers storing, processing, or transmitting an aggregate of greater than one million transactions or accounts per year. Effectively, OpSource met the 12 requirements in building and maintaining a secure network, protecting cardholder data, maintaining a vulnerability management program and maintaining an information security policy.
NWP Services Corporation (NWP) utility cost recovery and management solutions has been validated as compliant with PCI DSS as a Level 1 service provider for the fourth consecutive year through Trustwave. Trustwave is provider of PCI DSS compliance management solutions. Moreover, NWP has enrolled in Trustwave’s on-demand compliance management solution, TrustKeeper, to maintain compliance with the PCI DSS and access the necessary tools to support on-going compliance such as external vulnerability scans.
Liaison Technologies announced the Liaison Protect Tokenization-as-a-Service (TaaS™) cardholder data environment successfully passed a PCI-DSS 2.0 audit and other major payment card association security requirements related to the protection of cardholder data. Through Trustwave. The cardholder data environment consists of the perimeter and internal firewalls, the Liaison Protect Token Manager application, the production VLAN, the Web VLAN and the VzCaaS Management VLAN. The PCI requirements are comprised of VISA’s Cardholder Information Security Program (CISP) and MasterCard’s Site Data Protection (SDP) program, as well as Discover’s (DISC) and American Express’s Data Security Operating Policies. The Liaison ‘Format Preserving Tokenization’ offers on-premise and as a managed service in the cloud, giving customers a choice on how to tokenize any type of confidential information, including credit card numbers.
Financial Transaction Services (FTS), a full-service provider of electronic transaction processing services, has selected Trustwave to provide PCI DSS compliance validation solutions for its merchants. FTS engaged Trustwave to provide its merchants with access to TrustKeeper(R) PCI Manager, Trustwave’s innovative security and compliance cloud portal. TrustKeeper PCI Manager simplifies merchants’ compliance efforts including moving merchants through the complex compliance process with greater ease and efficiency by making the tasks achievable for non-technical users. This helps facilitate PCI DSS compliance validation for merchants or acquirers, independent services organizations (ISOs), and processors with large merchant populations.
The PCI SSC announced plans to train and certify payment software integrators and resellers on the secure installation and maintenance of validated PA-DSS applications into merchant environments to support PCI DSS compliance. The PCI Qualified Integrators and Resellers (QIR) program is set to be rolled out over the coming months, with training set to begin in late summer and a global list of PCI Qualified Integrators and Resellers to be available later this year. This after Trustwave research indicated 76% of the breaches investigated in 2011 were a result of security vulnerabilities introduced by a third party responsible for system support, development and/or maintenance of business environments.