Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Attacks/Breaches

3/15/2012
04:56 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

ControlScan Rolls Out Managed Network Firewall

ProTect Network Firewall simplifies network segmentation to aid small merchants in reducing the scope of PCI compliance

ATLANTA, GA., March 15, 2012 — For many merchants, attempts at in-house firewall configuration and management often lead to simple-to-make mistakes that result in misconfigured security systems, unnecessary data exposure and risk of non-compliance with the PCI Data Security Standard (DSS).

ControlScan, the leading provider of PCI compliance and security solutions designed for small merchants and the ISOs and acquirers that serve them has added ProTect Network Firewall to its ProTect Managed Security Services to manage the installation, administration and monitoring of network firewalls specifically for Level 4 merchant businesses.

“Network firewall errors or gaps for any merchant – large or small – can result in business-damaging lapses in security,” said Joan Herbig, CEO of ControlScan. “Despite this fact, we found that no managed network firewalls were tailored to the resource and budget limitations, unique operating demands and PCI compliance requirements of small businesses. Our ProTect Network Firewall fills that gap by pairing Mako Networks’ cloud-managed network security technology with ControlScan’s Level 4 concentration and service.”

By providing affordable and continuous network monitoring and 24/7 protection against outside threats, ProTect Network Firewall improves the overall security posture of a small business, such as Pearl Specialty Market & Spirits in Portland, Ore., IT director, Murad Pirani, found ProTect Network Firewall attractive for his business, because it locked down his card data environment per pre-defined PCI DSS rules, ensured all updates and upgrades were made in a timely manner and in accordance with changes to the PCI standard and increased Internet productivity by reporting on how the network is being used and by whom.

“A network firewall managed from the cloud is an ideal way for Level 4 merchants to secure their network without requiring a great deal of technical expertise,” said Simon Gamble, president, North America for Mako Networks. “The reduced cost of business operation – such as ongoing maintenance and upgrades – allows merchants to focus on their business and not worry about security. It’s all taken care of for them.”

“It is not just merchants that benefit from a managed network firewall,” adds Herbig. “Their acquirers do as well. As an additional service, ProTect Network Firewall can build merchant loyalty, reduce attrition, provide a new revenue stream, minimize portfolio risk and make it easier for merchants to achieve, maintain and reduce the scope of PCI compliance.”

Finally, ProTect Network Firewall simplifies network segmentation to aid small merchants in reducing the scope of PCI compliance. By enabling just one network segment to communicate with the payment processor, merchants can offer customer benefits, such as secure WiFi, without exposing cardholder data to possible theft.

About PCI Compliance Provider, ControlScan: Headquartered in Atlanta, Georgia, ControlScan is the leading provider of Payment Card Industry (PCI) Compliance and Security services designed to meet the unique needs of small to mid-sized merchants and the acquirers that serve them. The company’s flexible solutions, easy-to-use online tools and personalized support significantly simplify PCI and security for its clients. In addition, as an Approved Scanning Vendor and a Qualified Security Assessor, ControlScan is positioned to help merchants meet compliance requirements and maintain secure business environments for their customers. For more information about ControlScan and its cloud-based solutions, visit controlscan.com or call 1-800-825-3301.

About Mako Networks

Mako Networks is a cloud-based network management company, providing services and managed appliances that connect businesses to the Internet and protect them from the threats it contains. Mako Networks helps merchants that process, transmit or store cardholder data to comply with the stringent Payment Card Industry Data Security Standards (PCI DSS). The company is certified as a PCI DSS Level 1 service provider, and currently operates from offices in Auckland, New Zealand, London and San Francisco.

Comment  | 
Print  | 
More Insights
Comments
Threaded  |  Newest First  |  Oldest First
News
Inside the Ransomware Campaigns Targeting Exchange Servers
Kelly Sheridan, Staff Editor, Dark Reading,  4/2/2021
Commentary
Beyond MITRE ATT&CK: The Case for a New Cyber Kill Chain
Rik Turner, Principal Analyst, Infrastructure Solutions, Omdia,  3/30/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
2021 Top Enterprise IT Trends
We've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you today!
Flash Poll
How Enterprises are Developing Secure Applications
How Enterprises are Developing Secure Applications
Recent breaches of third-party apps are driving many organizations to think harder about the security of their off-the-shelf software as they continue to move left in secure software development practices.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-3493
PUBLISHED: 2021-04-17
The overlayfs implementation in the linux kernel did not properly validate with respect to user namespaces the setting of file capabilities on files in an underlying file system. Due to the combination of unprivileged user namespaces along with a patch carried in the Ubuntu kernel to allow unprivile...
CVE-2021-3492
PUBLISHED: 2021-04-17
Shiftfs, an out-of-tree stacking file system included in Ubuntu Linux kernels, did not properly handle faults occurring during copy_from_user() correctly. These could lead to either a double-free situation or memory not being freed at all. An attacker could use this to cause a denial of service (ker...
CVE-2020-2509
PUBLISHED: 2021-04-17
A command injection vulnerability has been reported to affect QTS and QuTS hero. If exploited, this vulnerability allows attackers to execute arbitrary commands in a compromised application. We have already fixed this vulnerability in the following versions: QTS 4.5.2.1566 Build 20210202 and later Q...
CVE-2020-36195
PUBLISHED: 2021-04-17
An SQL injection vulnerability has been reported to affect QNAP NAS running Multimedia Console or the Media Streaming add-on. If exploited, the vulnerability allows remote attackers to obtain application information. QNAP has already fixed this vulnerability in the following versions of Multimedia C...
CVE-2021-29445
PUBLISHED: 2021-04-16
jose-node-esm-runtime is an npm package which provides a number of cryptographic functions. In versions prior to 3.11.4 the AES_CBC_HMAC_SHA2 Algorithm (A128CBC-HS256, A192CBC-HS384, A256CBC-HS512) decryption would always execute both HMAC tag verification and CBC decryption, if either failed `JWEDe...