X-force has information on the specific malware that breached the Point of Sale terminals (POS).
The Internet Storm Center has an interesting comment,which is discussed in their newssummary section.
Is a refrigeration vendor ultimately to blame for the target breach?
This brings up another point – your vendors better have good security, as the weakest link in the chain breaks and allows the criminals in.
If all viruses were detectable with antivirus then malware would be easily found and no more hacks would happen.
Some viruses are hard to detect on purpose. They evade antivirus software, system administrators and other software.
But a scan of a system will show a port open which requires further analysis. Because the virus or malware wants to phone home, well it has to have a port open to do that.
Now we can find it: with Sigma
firewalking is a term used to signify checking a firewall or webserver port by port to see its status.
We perform a similar service to give you a report that will let you know how you look in the eyes of a criminal or hacker.
We provide Alpha service
You never know when a hacker will deface it due to unknown vulnerabilities.
Hackersblog has an example of a defaced website.
The only way to combat this is to review your site
Tell us how we can help.
What is the first method used in evaluating a web application?
It starts with the Alpha test
How do you know the level of security with your website application?
1. A certain amount of testing must be started – our Alpha testing starts a security profile.
2. A Second level of testing is the Sigma (Σ) testing – which actually attempts to break the application.
In real estate the motto is Location, Location, Location.
But in Information Security it is Testing, Testing, Testing.