Risk
5/16/2013
01:46 PM
Dark Reading
Dark Reading
Products and Releases
Connect Directly
RSS
E-Mail
50%
50%
Repost This

EarthLink Launches PCI Compliance Solutions For Retailers

Solution features Approved Scan Vendor (ASV) vulnerability scans

ATLANTA, May 16, 2013 /PRNewswire/ -- EarthLink, Inc. (NASDAQ: ELNK) a leading IT and communications provider, today announced the launch of a new PCI Compliance Solutions service, complete with the validation tools needed to assist retailers in meeting their Payment Card Industry Data Security Standard (PCI DSS) requirements. The solution features Approved Scan Vendor (ASV) vulnerability scans, a security policy, web-based training, self-assessment, access to an online knowledge base and breach expense protection.

Click here to download the free webinar and companion whitepaper entitled: PCI

Compliance: Protect Your Business from Data Breach that explains the risk and financial impact of credit card data breaches, key PCI compliance requirements and how businesses can better protect their customers.

EarthLink is partnering with ANXeBusiness Corp. (ANX), a leading provider of compliance solutions, to offer this package of powerful security technology tools that make achieving PCI DSS compliance faster and easier for retailers. To streamline compliance verification, PCI Compliance Solutions include a security policy that fulfills the PCI DSS requirements, and an online self-assessment questionnaire wizard.

To minimize a retailer's cost and time to recover from a breach of its cardholder data environment and re-establish PCI DSS compliance, PCI Compliance Solutions also offer reimbursement of up to $100,000 per merchant location for certain breach related expenses, with a combined per occurrence and aggregate yearly limit of $500,000. The breach funds are intended to cover the costs of the required forensic audit, replacement of affected credit cards, resulting fines from PCI Security Standards Council members and telephone consulting support. The breach protection offered through EarthLink is provided to the customer by ANXeBusiness Corp.

"Our retail customers have made it clear that they want a partner willing to address overall business issues versus a traditional carrier that simply provides a connection to a store. With a portfolio of secure services that includes the new PCI Compliance Solutions as well as nationwide MPLS WAN services, EarthLink makes it easier for retailers to achieve PCI DSS compliance," said Greg Griffiths, Vice President of Retail Solutions for EarthLink. "We are also eager to leverage ANX's leadership and PCI DSS market experience to help protect our retail clients."

With thousands of retail customers, including marquee names such as GNC, HoneyBaked Ham, Genesco and The Sleep Train, retail continues to be a key vertical market focus for EarthLink. The company's robust portfolio of networking solutions tailored for the retail space showcases EarthLink's expertise with secure, managed IP networks, nationwide private MPLS networks, integrated voice and data and Direct Connect, offering a fast, secure direct connection to leading payment processors.

About EarthLink

EarthLink, Inc. (NASDAQ: ELNK) is a leading IT services and communications provider to more than 150,000 businesses and one million consumers nationwide.

EarthLink empowers customers with managed services including cloud computing, managed and private cloud, and virtualization services such as managed hosting and cloud workspace. EarthLink also offers a robust portfolio of IT security, application hosting, colocation and IT support services. The company operates an extensive network spanning 29,421 route fiber miles with 90 metro fiber rings and 8 secure data centers providing ubiquitous nationwide data and voice IP service coverage across more than 90% of the country. Founded in 1994, EarthLink's award-winning reputation for outstanding service and product innovation is supported by an experienced team of professionals focused on best-in-class customer care. For more information, visit EarthLink's website at www.earthlink.net.

About ANX

ANXeBusiness Corp., headquartered in Southfield, Michigan, is a global provider of managed security, compliance and connectivity solutions. ANX is certified by the PCI Data Security Council as a Qualified Security Assessor (QSA) and an Approved Scanning Vendor (ASV). The company is privately owned by One Equity Partners (www.oneequity.com), which manages investments and commitments for JP Morgan Chase & Co. For more information, visit www.anx.com.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
ivow
50%
50%
ivow,
User Rank: Apprentice
5/16/2013 | 9:56:17 PM
re: EarthLink Launches PCI Compliance Solutions For Retailers
Is this an article or an ad?
Register for Dark Reading Newsletters
White Papers
Flash Poll
Current Issue
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2011-0460
Published: 2014-04-16
The init script in kbd, possibly 1.14.1 and earlier, allows local users to overwrite arbitrary files via a symlink attack on /dev/shm/defkeymap.map.

CVE-2011-0993
Published: 2014-04-16
SUSE Lifecycle Management Server before 1.1 uses world readable postgres credentials, which allows local users to obtain sensitive information via unspecified vectors.

CVE-2011-3180
Published: 2014-04-16
kiwi before 4.98.08, as used in SUSE Studio Onsite 1.2 before 1.2.1 and SUSE Studio Extension for System z 1.2 before 1.2.1, allows attackers to execute arbitrary commands via shell metacharacters in the path of an overlay file, related to chown.

CVE-2011-4089
Published: 2014-04-16
The bzexe command in bzip2 1.0.5 and earlier generates compressed executables that do not properly handle temporary files during extraction, which allows local users to execute arbitrary code by precreating a temporary directory.

CVE-2011-4192
Published: 2014-04-16
kiwi before 4.85.1, as used in SUSE Studio Onsite 1.2 before 1.2.1 and SUSE Studio Extension for System z 1.2 before 1.2.1, allows attackers to execute arbitrary commands as demonstrated by "double quotes in kiwi_oemtitle of .profile."

Best of the Web