Showing posts with label Alerts. Show all posts
Showing posts with label Alerts. Show all posts

New U.S. Executive Order for Russian-Issued Cards

As your merchant advocate, we want to take just a moment of your time to let you know about a recent United States Executive Order impacting all U.S. processors. It may have an impact on your business, especially if a high percentage of your clientele uses internationally-issued payment cards.

Shift4 NOT Affected by OpenSSL “Heartbleed” Vulnerability

Shift4 is aware of the “Heartbleed” vulnerability that is being reported by security bloggers and the mainstream media. None of Shift4’s technologies have been affected by the Heartbleed bug. Because we’re your merchant advocates, we have put together the following information to help you protect your personal information from other sites that may have been compromised.

VISA Issues POS Malware Alert

Being merchant advocates, we at Shift4 strive to inform our merchant customers about the importance of maintaining updated software, Web browsers, and recently, operating systems. This alert comes from VISA.

Windows XP Warning: The Time to Update Is NOW

In January, we warned you that Microsoft would cease support for Windows XP very soon. Well, that time has come. After April 8, 2014, Windows XP is no longer receiving security patches or end-user updates from Microsoft, thereby making the operating system highly vulnerable after a new attack vector is discovered. This impacts you in two ways: first is the loss of PCI compliance, and second is the loss of system security.

Don’t Let Old Terminals Leave You Open to Fraud

Our merchant customers know we are proud merchant advocates. In that spirit, here’s a quick loss prevention tip about switching out old terminals that will prevent the possibility of fraudulent charges and the potential exposure of your sensitive merchant account information. This is especially pertinent if you’ve recently switched to Shift4 or are upgrading or replacing your terminals.

Internet Explorer 8 Users: Time to Update

Last month we warned our merchants using Windows XP about upcoming deadlines that will affect PCI compliance. This month, our announcement goes out to our users with Internet Explorer 8 (IE 8). As of early 2015, Shift4 will no longer support IE 8 and therefore you will not be able to access DOLLARS ON THE NET® if you’re running that browser.

Windows XP Sunset Event Could Affect Your PCI Compliance

On April 8, 2014, Microsoft’s extended support for Windows XP will cease. Merchants running this operating system should start preparing now to upgrade to a supported operating system. But of course, in standard Shift4 style, we’re here to explain why and how these changes affect you so you can keep your business compliant and safe.

IE7 and Compatibility Mode No Longer Supported

Approximately two weeks ago, Shift4 ended support for Microsoft’s Internet Explorer 7. Users still running this outdated, and therefore unsecure, browser will not be able to access DOLLARS ON THE NET® until they upgrade to a more current version.

Summertime Fraud

It always seems that the busiest times of the year are also the times when we hear about the most “trusted-employee” fraud – that’s when an employee uses their access to defraud the company, usually by providing overstated or fraudulent credits. Around the holidays, we often put out a warning to our merchant customers to be extra vigilant, and now that summer is here, we are giving the same message: be careful and watch for suspicious activity!

Always be "Mal-Aware"

Cyber attacks are becoming more and more common. The Internet has been abuzz with them for years, but in the past week, we have seen some of the largest attacks ever launched. Shift4’s Information Security team monitors these threats and has asked us to bring one of them to your attention, as we would hate to see it affect any of our merchant customers.

System Alerts: How Shift4 Keeps You Informed

Shift4’s system alerts help you monitor and diagnose issues with your payment processing quickly and easily. Issues and outages across the industry (from banks, processors, telecommunications providers, etc.) are posted to the System Alerts page of our website and to our Twitter account in near real-time as the information comes to our Support staff.

Tame the BEAST (Browser Exploit Against SSL & TLS)

Shift4 works hard to help merchants understand the challenges and threats that they face in the payments processing world. We typically try to explain all the information we publish in plain English so that you don’t have to be an IT genius to understand it. We must warn you: this article breaks from that tradition.

Defense in Depth

Back in March we published an article called Quick and Dirty IT Security, in which we introduced you to four easy steps you can take to drastically reduce your chances of being breached. As that has been one of our most-read articles to date, we’ve decided to follow it up today with a few more things you should know about securing your systems.

Fraud Alerts vs Breach Alerts

Do you know the difference between fraud alerts and breach alerts? You should – and you should make sure your staff does, too. These alerts are two very different things and require completely different responses. Mixing the two up can lead to a world of problems.

Global Effects of the Global Breach

Over the past few weeks, the payment industry Web space has been filled with articles spawned by the reported breach of Global Payments. These posts range from intelligent hypotheses based on significant industry experience to wild speculation from scheming salesmen looking to make a quick sale by inspiring fear, uncertainty, and doubt in their potential clients.

Global Ramifications

The Internet is abuzz with speculation on the source and scope of the Global Payments breach. In the past few days, reports on the number of affected cards have ranged from as many as 10 million to a little more than 50,000 with Global setting the “official” number at 1.5 million. Likewise, the source of the breach has been widely disputed. Several industry pundits claimed the transactions came from a single industry (parking garages or taxi companies, depending on who you believe – or, in the most recent iteration, a taxi company that runs parking garages – all based in New York City).

VISA CISP: If Compromised

We've noticed over the past few months that our security articles are some of our most popular posts. Consider this post a follow up to last month's Quick and Dirty IT Security and November's What to do if You Think You May Have Been Breached. This is a quick list of action items for organizations that have been compromised.

'Tis the Season to be Vigilant

The holiday season should be a time of joy and goodwill. Unfortunately, for many (especially in difficult economic times) it becomes a time of desperation and deceit. Historically, the holiday season has been prime season for theft, credit card fraud, and data security breaches. We don’t want your holiday cheer to be ruined by a fraudster or a thief, which is why we’re committed to providing you with vital security information and helpful hints.

Simple Clues to Early Detection of a Computer Breach

Defending your computer systems from Internet-borne threat agents can be a daunting task. Threat agents take on many forms. Among some of the nastiest are Remote Administration Trojans (RATs) and key-loggers that record data for later extraction through the RAT.

What to do if You Think You May Have Been Breached

Imagine you have just discovered something amiss in your system and signs point toward a potential data breach. Do you have a plan of action in place? Do you have people on hand who know how to deal with such a problem? If not, have you found an expert you can contact?