BicoTech

·         Gaping hole: EMV Chip+PIN vulnerable to man in the middle attacks.  Translation: millions of European card holders at risk of card fraud (that to the bank’s eye doesn’t look like fraud) http://www.lightbluetouchpaper.org/2010/02/11/chip-and-pin-is-broken/

·         E2E and tokenization increase security but do not decrease scope, unless “if, and only if, it has been validated that the entity that possesses encrypted cardholder data does not have the means to decrypt it.” “Once the cardholder data is encrypted or tokenized, and so long as the merchant never has the ability to retrieve clear text data, all the downstream systems could be out of scope. Otherwise, all bets are off and all your cardholder data are in scope. You may have improved your security, but you have not reduced your PCI scope.” http://www.storefrontbacktalk.com/securityfraud/security-versus-scope-choose-one/

·         Visa increases the number of merchant categories eligible for “no signature for $25 or less”, decreasing tender time for cash heavy discount merchants http://www.paymentsnews.com/2010/02/visa-extends-no-signature-required-to-additional-merchant-categories.html

·         Dutch retailers expecting to go cashless in five years http://babelfish.yahoo.com/translate_url?doit=done&tt=url&intl=1&fr=bf-home&trurl=http://www.nu.nl/economie/2180145/contant-geld-verdwijnt.html&lp=nl_en&btnTrUrl=Translate

·         NEC using facial database to estimate age of customer to within 10 years http://www.storefrontbacktalk.com/crm/nec-using-hair-color-ear-shape-to-help-digital-signage-guess-consumers-age/

Posted via email from Bicotech Posterous

Highlight the virtual machine, wait for the summary screen to refresh and you will see a USB icon above the Tasks and Events tabs.

Posted via email from Bicotech Posterous

Canon EOS 550D vs EOS 500D Key differences

Posted via email from Bicotech Posterous

Posted via email from Brad’s posterous

• Burger King suing franchisees who haven’t upgraded POS terminals within the 20 month window allotted (costing them roughly $18k – $35k/store to upgrade) http://www.storefrontbacktalk.com/supply-chain/burger-king-sues-franchisees-who-didnt-upgrade-pos/
• New PCI rules: merchants have to treat digitized recordings exactly as data files, meaning they regard phone conversations containing card information with the same restrictions as regular credit card data. http://www.storefrontbacktalk.com/securityfraud/new-pci-phone-rules-a-number-spoken-is-just-as-risky-as-one-typed/
• From our friend Greg at IHL: POS software maintenance costs more than estimated: http://www.storefrontbacktalk.com/securityfraud/pos-software-maintenance-disconnect-retailers-to-pay-a-lot-more-than-they-expect/
• Ponemon Institute updates cost of a data breach estimate for 2009: has gone up to $202-$204, with legal costs showing the largest share increase: http://www.darkreading.com/security/attacks/showArticle.jhtml?articleID=222500222&cid=RSSfeed
• Securosis pontificating on defending against Advanced Persistent Threats (long term, high value targets) http://securosis.com/blog/some-apt-controls1
• Unique browser tracking without cookies: http://www.schneier.com/blog/archives/2010/01/tracking_your_b.html

Posted via email from Brad’s posterous

The tech industry will be in paroxysms of future shock for some time to come. Many will cling to their January-26th notions of what it takes to get "real work" done; cling to the idea that the computer-based part of it is the "real work."

It's not. The Real Work is not formatting the margins, installing the printer driver, uploading the document, finishing the PowerPoint slides, running the software update or reinstalling the OS.

The Real Work is teaching the child, healing the patient, selling the house, logging the road defects, fixing the car at the roadside, capturing the table's order, designing the house and organizing the party.

Read it here: http://www.macworld.com/article/146038/2010/01/ipad_future_shock.html

Posted via email from Brad’s posterous