At the invitation of usd AG, representatives of leading European acquirers once again came together for an exchange of experience and expertise with PCI DSS in Neu-Isenburg in early October 2019. The event agenda included current developments from the world of PCI standards and innovations in the usd Compliance Management Program. A special focus was also on the exchange of …
In addition to university courses, the usd HeroLab training program „Become a HeroLab Professional“, or “Become a HeroLabber” for short, is another investment in qualified young talent by usd AG. Experienced usd HeroLab security analysts systematically prepare the students of this year’s “Summerschool” for their involvement in pentesting projects. Julian Brecht, student at Technische Universität Darmstadt, about this year’s Summerschool: …
Attacks on unsecured or outdated payment terminals have been increasing lately. Therefore, it is more important than ever to secure electronic transactions and protect credit card data and PINs with effective security measures. The PCI Security Standards Council (PCI SSC) has therefore published the PCI PIN Standard Version 3.0 this year. We have summarized the essential points for you: What …
usd AG has received the PCI DSS Qualified Security Assessor (QSA) license for Asia Pacific from the PCI Security Standards Council (PCI SSC). Christopher Kristes, Head of PCI Security Services: „As a full-service provider, we offer our increasingly international clients comprehensive consulting and certification services for various PCI security standards. We are pleased that, in addition to our clients in …
Corinna Reinheimer, who is in charge of ASV scans at usd AG, tells us the five most important characteristics you should consider when choosing your PCI scanning partner. Top 1: Comprehensive experience Employees in the fields of security analyses and vulnerability management require comprehensive professional experience in order to ensure they can propose proper solutions to security findings. Top 2: …
Photo: Katharina Imgram (on the right), Security Consultant, and Maximilian Müller, Senior Security Consultant Security has a thousand facets. Find your niche in IT Security. IT Security is the hype topic of our time. The job descriptions are manifold and often filled with hardly understandable buzzwords. In our interview series, veterans and novices of usd give insights into their work …
Photo from left to right: Dzeraldin Memisevic (usd AG), Tonči Damjanić (Agent Cash Ltd), Lorenz Heiler (usd AG) Whether for start-ups or global players – a PCI certification project can pose a major challenge to any business. This makes it all the more enjoyable for us to look back on the success we have achieved together with our clients. After …
by Stefan Schmer, Managing Consultant at usd HeroLab. Vulnerability Disclosure usd HeroLab penetration testers have identified several security vulnerabilities during security analyses. These vulnerabilities affect the products Adobe Experience Manager (AEM), Bitbucket, feeling4design Super Forms and Oracle Transportation Management (OTM). The following vulnerability classes were identified: Cross Site Scripting (XSS) Username/Filename Enumeration Sensitive Data disclosure Code Injection Broken Access Control …
We are excited to present one of our in-house developments at DEF CON 27 – the CST Chef. Our Heroes and developers Sebastian Puttkammer and Ralf Almon, Managing Consultants at usd HeroLab, have taken a brief moment to say some quick words. Ralf, DEF CON is a staple conference of the international hacker scene. How did you react when you …
usd AG has been accredited by the PCI Security Standards Council (PCI SSC) as a Qualified PIN Assessor (QPA). The license is valid worldwide. With its new Qualified PIN Assessor (QPA) Program, the PCI Security Standards Council accredits security experts as assessors according to the PCI PIN Security Standard. The PCI PIN Security Standard contains requirements for the secure management, …
