Paay, a New York-based card payments processor, left about 2.5 million credit card transactions publicly exposed for roughly three weeks. The organization forgot to put password protection on the server, allowing anyone to access the data inside. Specifically, the housed data contains plaintext credit card numbers, expiration dates, the amount spent and partially masked copies of each credit card number – cardholder names, CVVs were not included.
Experts Comments
Linkedin Message
@Chris DeRamus, VP of Technology Cloud Security Practice, provides expert commentary at @Information Security Buzz.
"Companies need to realize that without a holistic approach to security, they open themselves up to undue risk. ..."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/paay-database-exposure-expert-commentary
Facebook Message
@Chris DeRamus, VP of Technology Cloud Security Practice, provides expert commentary at @Information Security Buzz.
"Companies need to realize that without a holistic approach to security, they open themselves up to undue risk. ..."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/paay-database-exposure-expert-commentary
Be part of our growing Information Security Expert Community (1000+), please register here.
Linkedin Message
@Robert Prigge, CEO, provides expert commentary at @Information Security Buzz.
"The timing of this breach also couldn’t be worse for victims as storefronts are closed amid the global health pandemic...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/paay-database-exposure-expert-commentary
Facebook Message
@Robert Prigge, CEO, provides expert commentary at @Information Security Buzz.
"The timing of this breach also couldn’t be worse for victims as storefronts are closed amid the global health pandemic...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/paay-database-exposure-expert-commentary