Category: Blogs

Blog The Data Protection Act of UK is known to be one of the most stringent regulations when it comes to protecting “Personal Data”. The Act regulates how personal data needs to be protected while it is processed, stored or transmitted by the data controller. A data controller can be any entity that holds information about its… Continue reading Information Security Facet of Data Protection Act UK

Blog With the budding trend of e-commerce industries, we are seeing an all-time high in transactions happening via Card-Not-Present channel. As the organizations allow features like express check-out, they end up storing cardholders data. Hence, the need to protect the card holder data has increased manifold. It is, therefore, no wonder, that companies are suddenly… Continue reading Evolving trends in Payment Card industry

Blog Its again a holiday season, everyone is enjoying at their extreme and so are the hackers, so before going reckless  just wait and have a look at the breaches that happened in  the past 2 years. We tried to analyze the exploitation patterns of PoS malwares from the technological as well as physical standpoint… Continue reading POS Malware (Stealth tool to steal the valuable Card Details in your Pocket)

Blog The beautiful June is about to end, the name of the month may have been “sere-month” which implies “dry and withered” or let’s move to Latin and the name becomes Iūnius, meaning “sacred to Juno,” the Roman goddess. So to beat the heat and in the loving memory of the Roman goddess, FireEye as… Continue reading Adobe Flash Zero-Day Vulnerability – Operation Clandestine Wolf by FireEye

Blog On March 24th, 2015 a landmark judgment was delivered by Supreme Court (SC) of India pertaining to online freedom of expression. A controversial legislative Section 66A of IT (Amendment) Act 2008 was declared as unconstitutional by SC. Interestingly, many complaints were made before regarding the widespread abuse and misuse of section 66A. But what… Continue reading Judgment Day – Quashing of Section 66A of IT (Amendment) Act 2008

Blog PCI SSC bulletin on impending revisions to PCI DSS, PA-DSS has created turmoil in payment industry. PCI SSC has announced that they will be bringing newer version of PCI DSS v3.1 and PA DSS v3.1 and Secure Socket Layers (SSL) v3.0 protocol will be treated as no longer acceptable for protection of data due… Continue reading SSL is Dead: What to do for PCI DSS Compliance

Blog The world of Healthcare has drastically changed in the recent past with the incorporation of IT into Healthcare services. It has completely transformed the way in which healthcare data were traditionally shared, exchanged or interchanged. Today, we see a wide diversity in the way information is created, gathered, Processed and transmitted; and all this… Continue reading Healthcare Interoperability – Privacy & Security

Blog “Is it possible that a baby monitor can be used for spying?” “Is our smart interactive TV keeping track of our viewing habits?” “While we are driving to the office, is it possible that the car gets hacked?” These questions may be new for us but the concept is an old one but let’s… Continue reading Internet of Things – The Changing Information Landscape

Blog “Compliance” is a big word for IT industry which is driving a significant amount of business. While following different rules, regulations and standards, you are not just avoiding potential fines and penalties but you are also gaining huge customer trust by ensuring their data is safe and secure in your custody. PCI DSS and… Continue reading Why to integrate PCI DSS and HIPAA?

Blog “Among the areas likely to be a focus of OCR examinations in 2014 is whether organizations have conducted a timely and thorough HIPAA security Risk Assessment, because that was a common weak spot found across the board in the pilot audit program as well as in previous breach investigations” – Susan McAndrew, OCR deputy director… Continue reading Risk Analysis – Success Factor for HIPAA Compliance