Great Mix of Theory and Practice: usd PCI DSS Acquirer Meeting 2019

usd AG News, PCI Security Services

At the invitation of usd AG, representatives of leading European acquirers once again came together for an exchange of experience and expertise with PCI DSS in Neu-Isenburg in early October 2019. The event agenda included current developments from the world of PCI standards and innovations in the usd Compliance Management Program. A special focus was also on the exchange of …

usd HeroLab „Summerschool 2019“ completed

usd AG Life@usd, News, usd HeroLab

In addition to university courses, the usd HeroLab training program „Become a HeroLab Professional“, or “Become a HeroLabber” for short, is another investment in qualified young talent by usd AG. Experienced usd HeroLab security analysts systematically prepare the students of this year’s “Summerschool” for their involvement in pentesting projects. Julian Brecht, student at Technische Universität Darmstadt, about this year’s Summerschool: …

Your Certification against PCI PIN – What You Need to Know

usd AG News, PCI Security Services

Attacks on unsecured or outdated payment terminals have been increasing lately. Therefore, it is more important than ever to secure electronic transactions and protect credit card data and PINs with effective security measures. The PCI Security Standards Council (PCI SSC) has therefore published the PCI PIN Standard Version 3.0 this year. We have summarized the essential points for you: What …

usd Receives PCI DSS QSA License for Asia Pacific

usd AG News, PCI Security Services

usd AG has received the PCI DSS Qualified Security Assessor (QSA) license for Asia Pacific from the PCI Security Standards Council (PCI SSC). Christopher Kristes, Head of PCI Security Services: „As a full-service provider, we offer our increasingly international clients comprehensive consulting and certification services for various PCI security standards. We are pleased that, in addition to our clients in …

Top 5 Quality Criteria for an Approved Scanning Vendor (ASV)

usd AG News, PCI Security Services, usd HeroLab

Corinna Reinheimer, who is in charge of ASV scans at usd AG, tells us the five most important characteristics you should consider when choosing your PCI scanning partner. Top 1: Comprehensive experience Employees in the fields of security analyses and vulnerability management require comprehensive professional experience in order to ensure they can propose proper solutions to security findings. Top 2: …

Meet the Team: Security Consulting

usd AG News, Security Consulting

Photo: Katharina Imgram (on the right), Security Consultant, and Maximilian Müller, Senior Security Consultant Security has a thousand facets. Find your niche in IT Security. IT Security is the hype topic of our time. The job descriptions are manifold and often filled with hardly understandable buzzwords. In our interview series, veterans and novices of usd give insights into their work …

Security Advisory 07/2019

usd AG News, usd HeroLab

by Stefan Schmer, Managing Consultant at usd HeroLab. Vulnerability Disclosure usd HeroLab penetration testers have identified several security vulnerabilities during security analyses. These vulnerabilities affect the products Adobe Experience Manager (AEM), Bitbucket, feeling4design Super Forms and Oracle Transportation Management (OTM). The following vulnerability classes were identified: Cross Site Scripting (XSS) Username/Filename Enumeration Sensitive Data disclosure Code Injection Broken Access Control …

Getting ready for DEF CON 27

usd AG News, usd HeroLab

We are excited to present one of our in-house developments at DEF CON 27 – the CST Chef. Our Heroes and developers Sebastian Puttkammer and Ralf Almon, Managing Consultants at usd HeroLab, have taken a brief moment to say some quick words. Ralf, DEF CON is a staple conference of the international hacker scene. How did you react when you …

usd AG accredited by PCI Council as Qualified PIN Assessor

usd AG News, PCI Security Services

usd AG has been accredited by the PCI Security Standards Council (PCI SSC) as a Qualified PIN Assessor (QPA). The license is valid worldwide. With its new Qualified PIN Assessor (QPA) Program, the PCI Security Standards Council accredits security experts as assessors according to the PCI PIN Security Standard. The PCI PIN Security Standard contains requirements for the secure management, …