Cyber Attack Readiness ToolKit™
The Payment Card Industry Data Security Standard (PCI DSS) requires Penetration-Testing (PEN-Testing) and Primary Account Number (PAN) scanning, not only for e-commerce merchants, but for some brick-and-mortar merchants as well.
The Cyber Attack Readiness ToolKit from Conformance Technologies safely and easily simulates real-world attacks against merchant computer systems. Vulnerabilities and risks which may impact the confidentiality, integrity or availability of data are identified. This includes network and application testing, as well as controls and processes around networks and applications, plus inspection for unsecured card data.
Unlike a vulnerability assessment or automated vulnerability scan, professional security engineers manually test systems tying to obtain as much sensitive data as possible.
A hands-on approach enables testers to intelligently respond to changing environmental conditions and discover new routes and system loopholes ripe for attack. As a result, merchants understand how malicious entities may attack their systems, and the extent of their vulnerability, so that proactive measures may be taken to strengthen system security.
One in five small businesses falls victim to cybercrime each year and of these, some 60 percent go out of business within six months after an attack. That’s a 20 percent chance of being hacked, and if it happens there’s a good chance these business are finished. That’s why putting the Cyber Attack Readiness ToolKit to work for you and your merchant portfolio is critically important.Penetration-Test Types
External — Identifies information anonymous attackers can access via the Internet
Internal — Identifies information employees, contractors and guests can access outside regular permissions pertaining to their responsibilities