As a Small business you are required to comply with PCI-DSS when accepting credit cards as a form of payment from customers. The costs maybe high to implement and comply with PCI, but the costs to mitigate a breach can shutdown your business. To highlight the importance of protecting your organization, please read below story.  

The costs of a breach can put a small company out of business. In 2006 and 2007, a Bellingham, Wash., restaurant called Burger Me LLC had its computerized cash register hacked. Criminals made untold numbers of fraudulent charges on customer credit cards.

After the incident, a credit-card company shut down Burger Me’s account and put a hold on thousands of dollars in incoming payments, says Rich Griffith, its former owner. By late 2008, fees and lost business from not being able to accept credit cards put Mr. Griffith in so much debt—$12,000 for investigation and remediation costs alone—that he closed his formerly break-even burger joint.

One of the most common styles of attack on small businesses targets credit-card information that a hacker can sell or use to make fraudulent purchases. To gird against this, the major credit-card companies in 2006 formed an industry group called the Payment Card Industry Security Standards Council, which establishes minimum technical protections for businesses that accept credit cards.

Hackers are looking constantly for week entry points such as Remote Desktop connections that allows a user to connect from remote location as if you are physically present and have a complete access and can run any program. In addition using week passwords with known user names such as: Administrator and Password.

In order to help small business to comply with PCI with reasonable fees, we have established the HandsOn PCI DSS Service. This may include parts of the following activeties:

• Network vulnerability assessments including servers, workstations and communication devices
• Network vulnerability assessments including web applications, web servers and more
• Wireless networks vulnerability assessments
• Hardening wireless connections
• Hardening Microsoft® Windows Active Directory
• Hardening Microsoft® Windows – all versions
• Hardening Microsoft® Exchange – all versions
• Hardening Microsoft® IIS – all versions
• Hardening Novell® Netware® 3.xx / 4.xx / 5.xx /6.xx
• Installing and configuring Firewalls i.e: CheckPoint, and Astaro
• Spam and virus protection on the corporate gateways
• Auditing USB devices connected to the corporate PC’s
• Secured networking design & implementation
• Spam & virus removal
• Secured Internet communications
• Secured e-mail systems
• Backup & recovery systems
• Database Activity Monitoring

Please use the form on the right and submit your request for a quote!

Updating...