Security firm back online after security breaches

Security firm back online after security breaches

 

A global intelligence firm recently relaunched its website after a series of data security breaches. Stratfor, the firm that had thousands of credit card and other personal information stolen, needs to make sure it follows PCI compliance in taking and storing credit card numbers on the website.

Company chief executive George Friedman admitted for the first time this week that customer information was not encrypted and said he is embarrassed about what happened.

“It was a truly unforgivable failure and I feel awful about it,” Friedman told The Associated Press in a telephone interview. “Sometimes in rapid growth, you make a mistake. That’s not an excuse, that’s not a justification ... It’s an explanation.”

The hacking collective Anonymous said it was behind the hacking attack, which allegedly included 75,000 credit card numbers and 860,000 usernames and passwords. This level of security breach is extremely serious, and the company needs to reexamine how it stores customer information. PCI DSS should be followed by the website to ensure no further breaches occur.