Endpoint
1/27/2014
04:39 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Electronic Transactions Association (ETA) Updates Congress On Payments Industry Security

Letter reiterated the payments industry's support for a uniform, national standard for data breach notification

WASHINGTON, Jan. 27, 2014 /PRNewswire-USNewswire/ -- The Electronic Transactions Association (ETA), the global trade association representing the payments technology world, today sent a letter to congressional leaders updating Congress on the state of payments networks that address the growing threat of cybercrime and data breaches.

The letter reiterated the payments industry's support for a uniform, national standard for data breach notification, bringing clarity for companies that maintain data and consumers who may be harmed by criminal breaches. Currently,

46 state laws create an untenable patchwork of obligations that can prevent consumers from getting timely access to information.

"The best and fastest way to protect the safety and security of consumer's financial data is to allow the marketplace to innovate, rather than add to heavy existing regulations from 20 federal agencies and 50 states; and for Congress to set a uniform national standard for reporting financial data security breaches", Oxman stated.

The letter also stressed the importance of collaboration among the payments and retail industries. Merchants play an important role in securing their points of access to our nation's payments infrastructure, and it is imperative that merchants take significant steps to upgrade their systems, particularly in the wake of recent breaches. ETA stated it stands ready to work with merchants to ensure consumer data is protected at the point of sale.

The more than five hundred members of ETA are the first line of defense for consumers to avoid the fraud perpetuated by criminals in the financial systems.

Even where a retailer is breached, our payments systems are designed to protect consumers with zero liability and fraud prevention and detection tools.

Click here to access the letter.

About ETA

As the only organization leading and representing the payments technology industry, ETA offers cutting edge news and information, facilitates business connections and growth, provides a standard of industry certification, and advocates on issues critical to their members' success. ETA's more than 500 members represent over $4 trillion in annual payments processed in the U.S.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Flash Poll
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2015-4231
Published: 2015-07-03
The Python interpreter in Cisco NX-OS 6.2(8a) on Nexus 7000 devices allows local users to bypass intended access restrictions and delete an arbitrary VDC's files by leveraging administrative privileges in one VDC, aka Bug ID CSCur08416.

CVE-2015-4232
Published: 2015-07-03
Cisco NX-OS 6.2(10) on Nexus and MDS 9000 devices allows local users to execute arbitrary OS commands by entering crafted tar parameters in the CLI, aka Bug ID CSCus44856.

CVE-2015-4234
Published: 2015-07-03
Cisco NX-OS 6.0(2) and 6.2(2) on Nexus devices has an improper OS configuration, which allows local users to obtain root access via unspecified input to the Python interpreter, aka Bug IDs CSCun02887, CSCur00115, and CSCur00127.

CVE-2015-4237
Published: 2015-07-03
The CLI parser in Cisco NX-OS 4.1(2)E1(1), 6.2(11b), 6.2(12), 7.2(0)ZZ(99.1), 7.2(0)ZZ(99.3), and 9.1(1)SV1(3.1.8) on Nexus devices allows local users to execute arbitrary OS commands via crafted characters in a filename, aka Bug IDs CSCuv08491, CSCuv08443, CSCuv08480, CSCuv08448, CSCuu99291, CSCuv0...

CVE-2015-4239
Published: 2015-07-03
Cisco Adaptive Security Appliance (ASA) Software 9.3(2.243) and 100.13(0.21) allows remote attackers to cause a denial of service (device reload) by sending crafted OSPFv2 packets on the local network, aka Bug ID CSCus84220.

Dark Reading Radio
Archived Dark Reading Radio
Marc Spitler, co-author of the Verizon DBIR will share some of the lesser-known but most intriguing tidbits from the massive report