DarkReading: Attack Of The RAM Scrapers
“Why go after the data in RAM? Because in many ways it’s easier to grab there. Current PCI compliance standards require the end-to-end encryption of sensitive payment card data when being transmitted, received, or stored. Data then is exposed at the endpoints, during processing, when the unencrypted credit card data is resident in the POS device’s RAM. That’s where the RAM scraper can cherry-pick the data being processed, capturing only those strings related to card identifiers rather than performing bulk data grabs.”
About me
a friendly linkblog covering email technology, spam prevention, "deliverability," and related topics.
Box of Meat is not associated with any particular company or organization.
Hate the web? Get your daily Box of Meat delivered by newfangled electronic mail!
www.flickr.com
|
Box of Meat is licensed under a Creative Commons Attribution-Share Alike 3.0 United States License.
