In the Target Corporation Data Breach case How can Target co

In the Target Corporation Data Breach case. How can Target corp secure its Points of Sales terminals?

Solution

Target shoppers had a shocking surprise on hearing the news that Target credit cards had been stolen by accessing data on point of sale systems.A sequence of steps has been made by rival to obtain access to Target\'s credit card data. Target is dealing with investigations involving the Department of Justice, the FTC and SEC. Individual state laws may result in fines and legal proceedings over and above PCI compliance fines. Target passed PCI compliance security to this breach, making people know that they had implemented security required by the credit card processing industry.

PCI compliance is solely not a risk managing policy. Only advantages related to payment card processes are taken into consideration. In fact, standards may inform rivals what security measures a business has done, so the opponent will likely attack succeptabilities not on the compliance checklist and benifits that are out of scope for PCI compliance policies.

Visa’s alert contains recommendations for securing both merchant networks and the PoS systems against malware attacks.Use two factor authentication when accessing payment processing networks,this will help to mitigate key logger or credential dumping type of attacks.Another security measure that could prevent RAM scraping attacks is to implement hardware-based end-to-end, or point-to-point, encryption. This would ensure that card data is not exposed in clear text at any point on its way to the payment processor. However, implementing this technology could involve acquiring and deploying new PoS terminals and card readers, which can be very expensive for a large retailer.

“Use two-factor authentication when accessing the payment processing networks,