Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Risk

9/26/2007
03:45 AM
50%
50%

ArcSight Debuts PCI Protection

ArcSight debuts comprehensive, scalable and cost-effective PCI protection solution

LONDON -- ArcSight, Inc., a leader in Enterprise Security and Compliance Management solutions, today announced the ArcSight PCI Protection Suite, an integrated, solution that empowers merchants and processors to safeguard their organisations from cardholder or customer data breaches, insider threats and non-compliance risks across the breadth of PCI DSS requirements, thereby protecting their brand and customer trust.

The ArcSight PCI Protection solution comprehensively monitors compliance with the Payment Card Industry (PCI) Data Security Standard (DSS) and is built on the award-winning ArcSight platform, which provides a foundation for compliance efforts across industry standards and government regulations. The ArcSight PCI Protection Suite is a comprehensive, scalable and cost-effective solution for protecting cardholder data and monitoring ongoing PCI compliance. Level one and two merchants across the retail, transportation, telecommunications, medical and financial markets have already selected the ArcSight PCI Protection Suite to secure their customers against the growing global threats to cardholder identity and data privacy.

The ArcSight PCI Protection Suite proactively protects cardholder data against breaches, insider threats and non-compliance risks across all 12 PCI requirements through:


  • Real-time monitoring and early-warning breach detection across all users, applications, databases and other PCI-impacted IT infrastructure
  • Automatic and continuous capture, storage and analysis of all events across distributed locations
  • Efficient compliance-posture validation and visibility

Announced customers include AirTran Airways, a subsidiary of AirTran Holdings, Inc., one of America's largest low-fare airlines; BFS Retail and Commercial Operations, LLC, the world's largest chain of company-owned car care centers; OfficeMax, a leading provider of office equipment and services; and Princess Cruises, one of the most recognised cruise lines in the world.

"AirTran Airways operates over 700 flights daily to over 55 destinations, and passengers primarily use major credit cards to purchase tickets," said Michelle Stewart, manager of data security, AirTran Airways. "Our customers place a high degree of trust in us to ensure that their credit card information is protected to the utmost level. We have been proactive with this objective and have selected ArcSight's PCI solution toolset to provide the most reliable protection available today."

ArcSight Inc.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
News
Inside the Ransomware Campaigns Targeting Exchange Servers
Kelly Sheridan, Staff Editor, Dark Reading,  4/2/2021
Commentary
Beyond MITRE ATT&CK: The Case for a New Cyber Kill Chain
Rik Turner, Principal Analyst, Infrastructure Solutions, Omdia,  3/30/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
2021 Top Enterprise IT Trends
We've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you today!
Flash Poll
How Enterprises are Developing Secure Applications
How Enterprises are Developing Secure Applications
Recent breaches of third-party apps are driving many organizations to think harder about the security of their off-the-shelf software as they continue to move left in secure software development practices.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-3493
PUBLISHED: 2021-04-17
The overlayfs implementation in the linux kernel did not properly validate with respect to user namespaces the setting of file capabilities on files in an underlying file system. Due to the combination of unprivileged user namespaces along with a patch carried in the Ubuntu kernel to allow unprivile...
CVE-2021-3492
PUBLISHED: 2021-04-17
Shiftfs, an out-of-tree stacking file system included in Ubuntu Linux kernels, did not properly handle faults occurring during copy_from_user() correctly. These could lead to either a double-free situation or memory not being freed at all. An attacker could use this to cause a denial of service (ker...
CVE-2020-2509
PUBLISHED: 2021-04-17
A command injection vulnerability has been reported to affect QTS and QuTS hero. If exploited, this vulnerability allows attackers to execute arbitrary commands in a compromised application. We have already fixed this vulnerability in the following versions: QTS 4.5.2.1566 Build 20210202 and later Q...
CVE-2020-36195
PUBLISHED: 2021-04-17
An SQL injection vulnerability has been reported to affect QNAP NAS running Multimedia Console or the Media Streaming add-on. If exploited, the vulnerability allows remote attackers to obtain application information. QNAP has already fixed this vulnerability in the following versions of Multimedia C...
CVE-2021-29445
PUBLISHED: 2021-04-16
jose-node-esm-runtime is an npm package which provides a number of cryptographic functions. In versions prior to 3.11.4 the AES_CBC_HMAC_SHA2 Algorithm (A128CBC-HS256, A192CBC-HS384, A256CBC-HS512) decryption would always execute both HMAC tag verification and CBC decryption, if either failed `JWEDe...