Enjoy these attached advisory alerts from Visa USA on the protection of merchant point of sale systems during the holiday season.
They were prepared in collaboration with the Financial Services Information Sharing and Analysis (FS-ISAC), the United States Secret Service (ISSS), and the Retail Cyber Intelligence Sharing Center (R-CISC) and is guided towards retailers or companies processing financial transactions and who manage "personally identifiable information" (PII).
This advisory is not intended to be a robust, all-inclusive list of procedures and the information contained in this advisory does not augment, replace or supersede requirements of PCI-DSS or other applicable security standards or practices.
The Tactics, Techniques, and Procedures discussed in this report include the following:
- Exploiting commercial application vulnerabilities
- Unauthorized access via remote access
- Email phishing
- Unsafe web browsing from computer systems used to collect, process, store or transmit customer information