BLOG

In the era of ever-evolving cybersecurity threats, Multi-Factor Authentication (MFA) has emerged as a hallmark of robust user authentication. While the premise of MFA is straightforward, implementation nuances can introduce significant complexities, especially when aligning with Payment Card Industry (PCI) guidelines. The distinction PCI makes between multi-factor and multi-step authentication (MSA) presses developers into a challenging trilemma. This article explores this trilemma, the real-world MFA practices of major internet platforms, and the pitfalls in the PCI guidance.

Read More

I was recently interviewed by TOSS C3 as part of their Expert Interview Series. We discussed the importance of cyber security and PCI compliance for small businesses. I cover everything from changes and improvements to PCI over the years, to the impact a data breach can have on a business.

Read More

A while back I was contacted by Karsten Strauss, a journalist with Forbes.com, He was looking for information for an article he was working on. The topic was how can small businesses protect themselves from a cyber attack and data breach. He was hoping to get some insight on what a new business should do - first thing - to protect its data, its transactions, and customers' info from cyber threats.

Read More

Urology Austin, a healthcare provider with 13 locations in central Texas, was the target of a cyber attack on January, 22 2017. It appears that the attackers were able to encrypt data on the company servers in an attempt to charge ransom through a ransomware attack. It was not clear whether the hackers were able to actually access any of the data that they encrypted. However, notification was sent to 200,000 patients as a precaution.

Read More

Aeris Secure is pleased to announce a new office in the Dallas/Fort Worth, Texas area. This new location will help Aeris Secure better serve PCI QSA clients in the DFW area as well as the greater southern region.

Read More