Mobile Payment Industry News

Wednesday, September 2, 2009

Opera 10 is Available for Download

Opera 10 with Turbo

Opera 10 showcases a sleek new design coupled with our new Turbo technology, which keeps Web pages loading lightning fast, even if your connection slows down. Download Opera 10 for free and experience the difference.

Download Opera version 10.00 for Windows

Turbocharge your Web experience with Opera 10

457-55-5462 Motion Dismissed, Lifelock Loses, Experian Wins

Experian(R) Applauds Latest U.S. District Court Decision in Suit Against LifeLock as Win for Consumer

LifeLock motion for reconsideration dismissed; improper placement of fraud alerts constitutes unfair business practices; Experian committed to protecting consumers
COSTA MESA, Calif., Sept. 2 /PRNewswire/ -- Experian((R)) today announced that a federal court in California denied a motion by LifeLock Inc. to reconsider the court's prior ruling which found that LifeLock's practice of setting 90-day fraud alerts for consumers with the three main credit bureaus is unlawful. Experian filed the lawsuit in 2008 alleging that LifeLock activities were contrary to certain provisions of the Fair Credit Reporting Act (FCRA). Experian has requested a permanent injunction, for which a decision is pending. "Experian is pleased the court continues to recognize the unfair business practices of LifeLock which Experian believes has resulted in a false sense of security and unnecessary costs to consumers," said Kerry Williams, Group President, Experian Credit Services and Decision Analytics. "Experian will continually seek to ensure that consumers understand their rights and opportunities regarding their credit histories and have access to a variety of services to help protect their personal information." The Experian group of companies has been safeguarding consumer credit data for decades and is a trusted provider of both free and fee-based services for consumers to protect and monitor their credit information and ensure their personal data is not compromised. More than 9 million consumers benefit from the companies' credit monitoring services, which is the most widely used for data breach protection. "Identity theft continues to be a threat to consumers," said Williams. "We encourage consumers to take an active approach to their personal information and, as such, Experian companies offer the ability to place free fraud alerts, dispute issues and subscribe to services such as ProtectMyID.com(TM)." Credit reporting companies like Experian are uniquely positioned to protect the consumer's credit information. Consumers have trusted ProtectMyID.com since it was introduced more than a year ago to safeguard their identities. ProtectMyID.com is an identity theft detection, protection and fraud resolution product used by consumers to prevent damages caused by identity theft. It monitors Experian, Equifax and TransUnion credit reports on a daily basis to see if key information has changed, if new data has been added to a member's credit profile, or if personally identifiable information is detected that could indicate fraud or suspicious activity. About Experian Experian is the leading global information services company, providing data and analytical tools to clients in more than 65 countries. The company helps businesses to manage credit risk, prevent fraud, target marketing offers and automate decision making. Experian also helps individuals to manage their credit relationships and protect against identity theft. Experian plc is listed on the London Stock Exchange (EXPN) and is a constituent of the FTSE 100 index. Total revenue for the year ended March 31, 2009, was $3.9 billion. Experian employs approximately 15,000 people in 40 countries and has its corporate headquarters in Dublin, Ireland, with operational headquarters in Nottingham, UK; Costa Mesa, California; and Sao Paulo, Brazil. For more information, visit http://www.experianplc.com. Experian and the marks used herein are service marks or registered trademarks of Experian Information Solutions, Other product and company names mentioned herein may be the trademarks of their respective owners. Contact: Heather McLaughlin Experian Public Relations 1 714 830 7756 heather.mclaughlin@experian.com

ATMIA Publishes Best Practices for Preventing Skimming

ATMIA publishes best practices for preventing skimming

The ATM Industry Association (ATMIA) (www.atmia.com) today announced the publication of its best practices for preventing ATM skimming.

This month, the PCI Security Standards Council released requirements for prevention of skimming at Point of Sale devices.

“The ATM is exceptionally safe and convenient to use,” commented Mike Lee, CEO of ATMIA, “ but that doesn’t mean there are no threats. Skimming is the one we most need to counter.”

Skimming is the unauthorized capture of magnetic stripe information by modifying the hardware or software of a payment device, or through the use of a separate card reader. Skimming is often accompanied by the capture of customer PIN data.

“While ATM security has been steadily improving over the last decade thanks to standards the ATM Industry Association has been developing and publishing, there has also been in an increase global organized crime targeting ATMs for illicit gains,” explained Mike Urban, FICO’s Sr. Director, Fraud Solutions and a leading industry expert on skimming. “The Best Practices for Preventing Skimming is the next logical step in protecting consumers and resisting organized criminals.”

One of the authors of the new manual, Douglas Russell, Director of DFR Risk Management Ltd, has compiled its international classification system of skimming devices and methods in order to give the worldwide industry a tool for understanding the range of types of attack and how to combat them.

Lee believes more can be done in terms of educating customers to protect their PINs by covering the hand used to key in the PIN at the ATM, in order to help prevent illegal PIN capture. This simple measure alone would significantly reduce the success rate of skimming attacks.

“Educating the customer on detection and prevention is a critical component to reducing the global threat of ATM skimming,” Jeffery Miller of Edge One Incorporated, another contributing author, said.

About ATMIA

www.atmia.com

The ATM Industry Association is a global non-profit trade association with over 1,300 members in about 50 countries. Its mission is to promote ATM convenience, growth and usage worldwide, protect the ATM industry's assets, interests, good name and public trust; and provide education, best practices, political voice and networking opportunities for member organizations. In June 2003, ATMIA established the Global ATM Security Alliance (GASA) (www.globalasa.com) with the mission to employ global security resources in a united alliance in order to protect the ATM industry from criminal activity.

J.D. Power: Credit Card Satisfaction at 3 Year Low

Westlake Village, Calif., 1 Sept. 2009 -— Driven by a significant decrease in satisfaction with fees and rates, overall credit card customer satisfaction declines to a three-year low, according to the J.D. Power and Associates 2009 Credit Card Satisfaction StudySM released today.

The study finds that overall credit card customer satisfaction decreases to 703 on a 1,000-point scale—the lowest level since the study’s inception in 2007. Overall satisfaction among credit card customers remains the lowest across the financial services industries in which J.D. Power and Associates conducts research, including insurance, banking and investment services.

The study measures customer satisfaction with credit cards by examining six key factors: interaction; fees and rates; billing and payment process; rewards; benefits and services; and problem resolution. Satisfaction with fees and rates drops to 603 points—down 37 points from 2008—contributing considerably to the decrease in overall satisfaction.

Nearly 20 percent of customers report experiencing an increase in their interest rate since 2008, almost double the 10 percent who said the same in 2008. The largest decline in satisfaction with fees and rates is among revolvers—customers who carry a balance from month to month—a drop of 53 index points from 2008. Nearly one-fourth of revolvers report an increase in their interest rate from 2008. In addition, late payment fees, which have the greatest negative impact on satisfaction, were incurred by 14 percent of customers, compared with 11 percent in 2008.

“Overall satisfaction declines 86 index points when a customer incurs a late fee,” said Michael Beird, director of banking services at J.D. Power and Associates. “Issues with fees also contribute to the high incidence of problems and complaints in 2009, with 18 percent of customers reporting problems, compared with 10 percent in 2008.”

The study finds that proactive and clear communication is key to improving satisfaction among credit card customers. For example, when an interest rate change occurs, satisfaction scores are 97 index points higher when customers say they were notified ahead of time by the credit card issuer, compared with when customers say they were not notified in advance.

“These findings raise questions about the effectiveness of the recent implementation of legislation aimed at helping credit card customers,” said Beird. “It’s important to note that 53 percent of customers are unaware of the current APR on their cards, despite the APR being disclosed on their statements every month. Unless issuers do more than simply follow the regulations, customers will likely not be any more satisfied. Communicating and actually connecting with customers with the same intensity used to acquire customers in the first place—rather than just complying with regulations—is critical to customer satisfaction.”

American Express ranks highest among credit card issuers for a third consecutive year with an index score of 762. American Express performs particularly well in the rewards, benefits and services, and billing and payment process factors. Discover Card (751) and National City (740) follow American Express in the rankings.

Effective communication with cardholders that reinforces the value of being a customer is a key best practice common among the high-performing credit card issuers. For example, 82 percent of cardholders with American Express are aware of the benefits and services associated with their card, compared with an industry average of 70 percent. American Express customers also report having access to an average of approximately five benefits and services, compared with the industry average of less than three. This awareness is an important contributor to the high level of satisfaction with rewards and benefits among American Express customers (757), compared with an industry average of 690.

Another differentiator of high performers is the importance of customer interaction. Discover Card, for example, performs particularly well in customer interaction through its Web site, automated phone service and customer service representatives. Discover Card also has a low percentage of Web site inaccessibility (13%) and an average wait time of only 3.3 minutes to speak with a customer service representative.

“For credit cards, customer satisfaction is definitely a two-way street,” said Beird. “Customers who actively manage their credit card relationships will have a more positive experience than those who passively take what they get.”

To improve overall satisfaction with credit cards issuers, consumers should take the following steps:

Compare the performance of credit card issuers, starting with comparative performance ratings at www.jdpower.com/finance/ratings/credit-card-ratings .

Make sure you are getting a card with the features and benefits that are important to you and that fit how you plan to use the card. For instance, if you plan to carry a balance on the card, find one with the lowest rates and fees. On the other hand, if you use the card to pay for everything from gas to groceries to vacations and pay off the balances each month, you may want a card with a rich and flexible reward program.

Educate yourself on the benefits and services available on the card and use them. Customers who are both aware and take advantage of card features are more satisfied than those who don’t.

When there’s a question about the appropriateness or accuracy of a fee or rate, request that it be waived or adjusted. Issuers are anxious to fix mistakes on their part and are willing to make accommodations for valued customers.

The 2009 Credit Card Satisfaction Study is based on responses from more than 9,000 credit card users. The study was fielded in May and June 2009.

About J.D. Power and Associates

Headquartered in Westlake Village, Calif., J.D. Power and Associates is a global marketing information services company operating in key business sectors including market research, forecasting, performance improvement, Web intelligence and customer satisfaction. The company’s quality and satisfaction measurements are based on responses from millions of consumers annually. For more information on car reviews and ratings, car insurance, health insurance, cell phone ratings, and more, please visit JDPower.com. J.D. Power and Associates is a business unit of The McGraw-Hill Companies.

About The McGraw-Hill Companies

Founded in 1888, The McGraw-Hill Companies (NYSE: MHP) is a leading global information services provider meeting worldwide needs in the financial services, education and business information markets through leading brands such as Standard & Poor’s, McGraw-Hill Education, BusinessWeek and J.D. Power and Associates. The Corporation has more than 280 offices in 40 countries. Sales in 2008 were $6.4 billion. Additional information is available at http://www.mcgraw-hill.com .

Source: Company press release.

PrePaid Card Settlement from Visa Saves them $100 Million plus...

According to the New York Times, Visa mirrored a move made by MasterCard last month and announced it will prepay the rest of a major legal settlement with U.S. merchants in order to get a discount. The move will save the credit/debit card processor $118 million.

The Times reports that Visa will prepay $682 million by Sept. 30 to wipe out the $800 million it still owes on a $2 billion settlement that subsidiary Visa USA reached in June 2003.

The settlement is for one of many class action lawsuits filed against both Visa and MasterCard this, particular one accused them of conspiring to fix prices and restrict trade.

Visa originally agreed to make eight annual installments of $200 million, through 2012.

Last month, Mastercard reached a deal for a similar discount, agreeing to prepay $335 million of the $400 million remaining in its obligation. Mastercard was to have paid $100 million annually through 2012.

The U.S. District Court for the Eastern District of New York, which handled the original settlement, must approve the modification.

Visa will make the payment by Sept. 30, or on the business day after the date the court approves the deal. Visa shares closed the regular trading session up 60 cents, at $71.10.

SafetyPIN an Urban Legend...or About to Become Reality?

SafetyPIN, which originally was designed and patented as a system where you enter your PIN in reverse to notify authorities of a robbery in progress has bad track record with banks according to Snopes.com, but an L.A. councilman, Greig Smith, is calling for the installation of such a "PIN Code Duress System."

Smith described the system as being one whereby a customer could enter the card's PIN in reverse order. The cash would still be disbursed, so as not to alert the robber, but police would be notified that a robbery was in progress and where. Such a system would cost banks approximately $25 per machine to install, said Smith, whose proposal was sent to the council's Public Safety Committee for study.

Want to do your own study? Read this from Urban Legend site: Snopes.com

Such a system was first imagined in 1994 and patented in 1998 by Joseph Zingher, a Chicago businessman. His SafetyPIN System would alert police that a crime was in progress when a cardholder at an ATM keyed in the reverse of his personal identification numbers. The flip-flopped PIN would serve as a "panic code" that sent a silent alarm to police to notify them that an ATM customer was acting under duress. Because palindromic PINs (e.g., 2002, 7337, 4884) cannot be reversed, Zingher's system included work-arounds for such numeric combinations.

However, Zingher has had little success in interesting the banking community in SafetyPIN despite his pitching it to them with great persistence over the years. He did in 2004 succeed in getting the Illinois General Assembly to adopt a "reverse PIN" clause in SB 562, but the final version of the bill watered down the wording so as to make banks' implementation of the system optional rather than mandatory: "A terminal operated in this State may be designed and programmed so that when a consumer enters his or her personal identification number in reverse order, the terminal automatically sends an alarm to the local law enforcement agency having jurisdiction over the terminal location."

In 2006, Michael Boyd pressed the Georgia State Assembly to pass a law requiring banks to create ATM panic codes that would operate the machines normally while also alerting police. His wife, Kimberly Boyd, was killed on 12 September 2005 after being carjacked by convicted sex offender Brian O'Neil Clark and forced to withdraw cash at an ATM. (She died when Clark crashed her SUV while being followed by a civilian who ultimately shot Clark to death afterwards.) Such a bill was placed before the Georgia Senate on 29 December 2005 (SB 379), but nothing came of it.

In 2004, the Kansas state senate sent to its Financial Institutions and Insurance Committee

SB 333, a bill that stated: "Any automated teller machine operated in this state shall be designed and programmed so that when a consumer enters such consumer's personal identification number in reverse order, the automated teller machine automatically sends an alarm to the local law enforcement agency having jurisdiction over the automated teller machine location." That bill died in committee that year. All this talk of various bills in three different state legislatures may serve to obscure some of the more important points attaching to this issue, points that are key to making up one's mind about whether having such a system in place is actually a good idea. No one in the banking industry seems to want the technology. The banks argue against its implementation, not only on the basis of cost but also because they doubt such an alert would help anyone being coerced into making an ATM withdrawal. Even if police could be summoned via the keying of a special "alert" or "panic" code, they say, law enforcement would likely arrive long after victim and captor had departed. They have also warned of the very real possibility that victims' fumbling around while trying to trigger silent alarms could cause their captors to realize something was up and take those realizations out on their captives. Finally, there is the problem of ATM customers' quickly conjuring up their accustomed PINs in reverse: Even in situations lacking added stress, mentally reconstructing one's PIN backwards is a difficult task for many people. Add to that difficulty the terror of being in the possession of a violent and armed person, and precious few victims might be able to come up with reversed PINs seamlessly enough to fool their captors into believing that everything was proceeding according to plan. As Chuck Stones of the Kansas Bankers Association said in 2004: "I'm not sure anyone here could remember their PIN numbers backward with a gun to their head."

Barclays Offers "Cash Back" MasterCard

More than ever before, consumers are scrutinizing financial products before signing up, but the word cashback is still sure to garner attention.

Barclays has become the latest lender to enter this emerging market, having launched the competitively priced Cashback Mastercard, which gives consumers the chance to earn one per cent cash back on the first £20,000 they spend each year.

Continue Reading

In a Sale, Skype Wins a Chance to Prosper

September 2, 2009,

eBay has signed a definitive agreement to sell 65% stake in its Skype communications unit for $1.9 billion, to private investor group led by Silver Lake and includes Index Ventures, Andreessen Horowitz and the Canada Pension Plan (CPP) Investment Board.

With its sale to private investors, the online calling service Skype has thrown off the last of the shackles that limited its growth and potential as a unit of eBay. Now its challenge is to turn its global popularity into bigger profits, The New York Times’s Brad Stone wrote.

EBay announced on Tuesday that it was selling Skype to a group led by Silver Lake Partners, a private equity firm in Silicon Valley. As part of the deal, which values Skype at $2.75 billion, the buyers agreed to pay $1.9 billion in cash, which includes a loan from eBay of $125 million, for 65 percent of the company. EBay, which is based in San Jose, Calif., will retain a 35 percent stake.

Continue Reading

Brussels Sprouts Gemalto Contactless Transport Cards with STIB

STIB Rolls-Out Gemalto Contactless Transport Cards in Brussels

Around the world, nearly 30 cities of over one million people use Gemalto’s contactless transport cards

Amsterdam, Netherlands, September 2, 2009 - Gemalto, the world leader in digital security, today announced it has been selected by “Société des Transports Intercommunaux de Bruxelles” (STIB), the company managing transport in Brussels, for its MOBIB contactless transport card program. With Gemalto’s Celego card, more than 400,000 inhabitants in Brussels will benefit from the speed and convenience of contactless technology when traveling on the subway, buses and trams. Deployment started in April 2009 and MOBIB cards will be extended to all of Belgium. Currently, nearly 30 cities of over one million people use Gemalto’s contactless transport cards around the world.

The MOBIB card is the size of a traditional credit card, is personalized with the holder’s picture, and is valid during five years. The card allows users to save time when accessing public transport and topping up balances. Travelers can avoid the queues at sales outlets and refill their cards at ticket machines or directly from the readers. Different transport formulas are available to address their needs: season tickets, 10-journey tickets or discount tickets. This multi-purpose card also gives access to public car parks. In the future, users will be able to access events equipped with MOBIB machines, such as stadiums, fairs and theaters.

“We selected Gemalto because it has more than a decade’s experience in large-scale deployments of contactless transport cards,” explained Etienne Graindor, general secretary of the ticketing department at STIB. “We wanted to provide our customers with a reliable and sustainable product that they can use on a daily basis for five years. Gemalto was able to offer such a card, which met these requirements perfectly.”

“This deal with STIB is part of our strategy to develop Gemalto’s transport activities,” added Philippe Cambriel, executive vice president of the Secure Transactions Business Unit at Gemalto. “Transport operators play a key role in the expansion of contactless systems throughout the world, and Gemalto is proud to supply all the services and technologies required for this development.”

Gemalto is involved in numerous ticketing projects across the globe and has already rolled out more than 120 million contactless travel cards. Its references include projects in Brazil, Chile, China, France, Italy, Malaysia, Mexico, the Netherlands, Portugal, the United Kingdom and the United States.

About Gemalto

Gemalto (Euronext NL 0000400653 GTO) is the world leader in digital security with 2008 annual revenues of €1.68 billion, and 10,000 employees operating out of 75 offices, research and service centers in 40 countries.

Gemalto is at the heart of our evolving digital society. The freedom to communicate, travel, shop, bank, entertain, and work—anytime, anywhere—has become an integral part of what people want and expect, in ways that are convenient, enjoyable and secure.

Gemalto delivers on the growing demands of billions of people worldwide for mobile connectivity, identity and data protection, credit card safety, health and transportation services, e-government and national security. We do this by supplying to governments, wireless operators, banks and enterprises a wide range of secure personal devices, such as subscriber identification modules (SIM) in mobile phones, smart banking cards, smart card access badges, electronic passports, and USB tokens for online identity protection. To complete the solution we also provide software, systems and services to help our customers achieve their goals.

As the use of Gemalto’s software and secure devices increases with the number of people interacting in the digital and wireless world, the company is poised to thrive over the coming years. For more information please visit www.gemalto.com.

Contact: Deb Montner, Montner & Associates Tech PR Agency, 203-226-9290, dmontner@montner.com

Acculynk PaySecure Press Release

PaySecure Pilot Shows Consumer Willingness to Use PIN Debit Online

1 out of every 2 consumers that are presented the PaySecure PIN-pad are choosing to pay with PIN debit instead of credit

ATLANTA, Sep 02, 2009 (BUSINESS WIRE) -- Acculynk announced today that it has released a new white paper that details preliminary pilot results of its Internet PIN debit payment method, PaySecure. The paper, entitled "PaySecure: Tracking to Become a Leading Online Payment Method" discusses consumer usage of the product to date, including the fact that 56-60% of consumers that are presented the PaySecure PIN-pad proceed with PIN entry and successfully submit their PIN.

"Because PaySecure is a brand-new payment method, most online shoppers are encountering the product for the first time at their merchant's checkout," said Ashish Bahl, CEO of Acculynk. "The fact we are seeing such a high rate of usage right out of the gate, with minimal education and marketing, demonstrates that PaySecure is an intuitive payment method that consumers will adopt."

PaySecure is presented as a payment option at the merchant checkout when a consumer's debit card can be used with a PIN and the card is in Acculynk's network of participating issuers. The consumer can choose to enter their PIN on the PaySecure PIN-pad or press Cancel to process their transaction as credit.

"PaySecure is a secure, convenient payment method that gives consumers another choice of how they use their debit card online, just like the choice they get at the retail point of sale," said Bahl. "Merchants and issuers can keep their customers satisfied and increase loyalty by offering PaySecure, while also benefitting from immediate consumer adoption, quick implementation and lower costs and fraud."

PaySecure was commercially introduced in March 2009 in a pilot program that includes several online merchants, issuers and EFT networks. Acculynk has steadily added new partnerships over the past two months, announcing the addition of AirTran and Ace Hardware Outlet to its merchant roster, and Credit Union 24 and SHAZAM to its list of participating EFT networks.

The company will announce another merchant in the next 7 days, and two more EFT networks in the next 30-90 days.

About Acculynk

Acculynk secures online transactions with a suite of software-only services that are backed by a powerful encryption and authentication framework protected by a family of issued and pending patents. Acculynk's services provide greater security, reliability, convenience and return on investment for consumers, merchants, networks, issuers and acquirers. For more information or to download a copy of Acculynk's new white paper, "PaySecure: Tracking to Become a Leading Online Payment Method", visit http://www.acculynk.com.

SOURCE: Acculynk Acculynk

Danielle Duclos, 678-894-7013

dduclos@acculynk.com

(IN)SECURE Magazine Available for Free Download

(IN)SECURE Magazine is a free digital security publication discussing some of the hottest information security topics. Issue 22 has been released today. You can download it for free, browse the archive for previous issues and subscribe to be notified when new issues are released.

Table of contents

Using real-time events to drive your network scans

Review: Data Locker

The Nmap project: Open source with style

Enterprise effectiveness of digital certificates: Are they ready for prime-time?

A look at geolocation, URL shortening and top Twitter threats

How "fake stuff" can make you more secure

Making clouds secure

Q&A: Dr. Herbert Thompson on security ROI and RSA Conference

Book review

Cyber Crime Fighters: Tales from the Trenches

Top 5 myths about wireless protection

Securing the foundation of IT systems

A layered approach to making your Web application a safer environment

In mashups we trust?

Adopting the security best practice of least privilege

Is your data recovery provider a data security problem?

New strategies for establishing a comprehensive lifetime data protection program

Security for multi-enterprise applications

EU data breach notification proposals: How will your business be affected?

Book review

97 Things Every Software Architect Should Know

Safety in the cloud: How CIOs can ensure the safety of their data as they migrate to cloud applications

Vulnerability management.

Tuesday, September 1, 2009

Bizzare (sic) Congratulations: "Your Site Passed PCI Scanning Test!

Don`t Look Now

New PCI data security rules coming in 2010 and threats of fines loom over web retailers

by Don Davis

Mark Wilson thinks it`s important to guard his customers` credit card numbers. But without an information technology specialist at his small online retail business, Night-Gear Inc., he had about given up on achieving compliance with the PCI security standards designed to protect cardholder data.

After months of notices from a security service that his site did not meet the requirements of the Payment Card Industry Data Security Standard—notices he struggled to comprehend—Wilson was prepared to go on paying the small monthly fines his processor assesses non-compliant merchants.

Then he received an e-mail saying his site had passed the PCI scanning test. "It was a bizarre," Wilson says. "We get this congratulatory letter saying, `You`ve done it.` Well, what have we done?"

Continue Reading at Internet Retailer.com

Web.com and First Data Form Strategic Partnership

Atlanta & Jacksonville, Fla., Sept. 1, 2009--(BUSINESS WIRE)--First Data, a global technology and payments processing leader, and Web.com (NASDAQ: WWWW), a leading provider of online marketing for small businesses, today announced an agreement to provide small and medium-sized businesses with secure payment processing and online marketing and eCommerce solutions.

Web.com and First Data will provide a wide array of tools to help small and medium-sized businesses find, connect and transact with new or existing customers online. Businesses can work with Web.com’s team of experts to create and strengthen their Web sites through the effective use of search engine marketing, search engine optimization tools and eCommerce solutions. First Data’s suite of payment processing products and services gives merchants the ability to transact payments securely both online and at the point of sale.

“Web.com has the breadth and depth of products and the expertise to improve a business’s visibility online,” said Souheil Badran, senior vice president and division manager for eCommerce at First Data.

“Our customers know they can depend on First Data to provide superior eCommerce tools and services. Our partnership with Web.com allows us to expand our offerings to include products that meet our small business customers’ Internet marketing needs."

“By partnering with First Data, our customers have the ability to work with one of the most trusted and recognized electronic payment leaders,” said David Brown, chairman and chief executive officer, Web.com. “The current economic climate has encouraged our customers to recognize the increasing importance of eCommerce and the true value they can derive from cost efficient and reliable payment processing tools. As such, we’ve made it a top priority to provide them with the best multi-platform, diversified payment options available.”

Businesses interested in obtaining a free rate analysis, can call 866-739-4494. Additional information can be found at: http://www.web.com/firstdata .

About First Data

First Data powers the global economy by making it easy, fast and secure for people and businesses to buy goods and services using virtually any form of electronic payment. Whether the choice of payment is a gift card, a credit or debit card or a check, First Data securely processes the transaction and harnesses the power of the data to deliver intelligence and insight for millions of merchant locations and thousands of card issuers in 36 countries. For more information, visit www.firstdata.com .

About Web.com

Web.com Group, Inc. (NASDAQ: WWWW) is a leading provider of online marketing for small businesses. Web.com offers a full range of online services, including Internet marketing and advertising, local search, search engine marketing (SEM), search engine optimization (SEO), lead generation, contractor quotes, website design and publishing, logo and brand development and eCommerce solutions, meeting the needs of small businesses anywhere along their lifecycle. For more information on the company, please visit www.web.com or call 1-800-GETSITE.

Source: Company press release.

Visa CEO to Present at Barclays Capital Global FS Conference

San Francisco, Sept. 1, 2009--Visa Inc. (NYSE:V) announced today that Joseph W. Saunders, Chairman and Chief Executive Officer, will present at the Barclays Capital Global Financial Services Conference in New York on Wednesday, September 16, 2009. The fireside chat will begin at 12:00 p.m. Eastern Time and last for approximately 40 minutes.

A listen-only audio webcast and replay will be accessible for 30 days on the Investor Relations web site at http://investor.visa.com/ .

About Visa Inc.

Visa Inc. operates the world's largest retail electronic payments network providing processing services and payment product platforms. This includes consumer credit, debit, prepaid and commercial payments, which are offered under the Visa, Visa Electron, Interlink and PLUS brands. Visa enjoys unsurpassed acceptance around the world, and Visa/PLUS is one of the world's largest global ATM networks, offering cash access in local currency in more than 170 countries. For more information, visit www.corporate.visa.com .

Source: Company press release

Cynergy Data Files for Chapter 11

Long Island City, N.Y., Sept. 1, 2009 -- Cynergy Data today announced that it has voluntarily initiated proceedings under Chapter 11 of the U.S. Bankruptcy Code in the U.S. Bankruptcy Court in Delaware and is pursuing a sale process under Section 363 of the Bankruptcy Code.

Cynergy Data has entered into an asset purchase agreement with "stalking horse" bidder Cynergy Holdings, LLC, an affiliate of The ComVest Group, a private investment firm focused on providing debt and equity solutions to middle market companies, to buy substantially all of the company's assets. ComVest is a leading provider of capital to the financial technology markets and owns controlling interests in a number of companies in the electronic payment processing industry, including Pipeline Data, CardAccept, AirCharge, SecurePay and Northern Merchant Services. The asset sale is subject to an auction and Bankruptcy Court approval.

The sale process is expected to enable a sale of the business to ComVest or any higher and better bidder approved by the bankruptcy court on an accelerated basis, thereby creating a financially stronger business entity with less debt and more economies of scale that is better positioned for the future. Cynergy Data expects to complete the sale process in 90 days or less.

Cynergy Data's operations are open and the company is providing uninterrupted services to its network of independent sales organizations ("ISOs") and merchants during its restructuring and sale process. The company plans to conduct business as usual through the process and has asked for court approval to continue paying vendors, employees, ISOs and merchants in the ordinary course. At the conclusion of the bankruptcy sale process, Cynergy Data will emerge as a dynamic standalone company that will receive strong financial backing from ComVest.

According to Marcelo Paladini, chief executive officer of Cynergy Data, the Chapter 11 process will allow the company to continue providing its merchant credit card processing services while the business completes a structured sale of the company's assets. "We are grateful for the continuing support of our employees, vendors, merchants and independent sales organizations as we undertake our restructuring process. We expect to emerge from this process as a new company with a much stronger financial position focused on continuing to provide excellent, cost-effective solutions to our merchants and ISO partners," he added.

ComVest also anticipates tremendous opportunities for Cynergy Data. "ComVest is excited to partner with Cynergy Data to help the company restructure debt and emerge as a leading acquirer. We believe that Cynergy has a significant competitive advantage in its processing business offering superior service and technology to its many merchants and ISO partners. As a firm that has a great deal of experience in payments processing, we are committed to Cynergy's success in the future and look forward to partnering with Cynergy's management team in serving the industry for many years to come," said Pete Kight, managing partner, ComVest.

Cynergy Data has secured a commitment from its existing lenders for so-called Debtor-in-Possession (DIP) financing which it believes will provide ample liquidity to meet its ongoing obligations during the sale process. The company has filed customary "First Day" motions seeking Bankruptcy Court approval of various types of relief designed to support its employees, customers and suppliers during the sale process, including motions to allow the company to continue to pay suppliers under normal terms for goods and services; to pay its employees in the usual manner and to continue their benefits; to continue performing its obligations to merchants and ISOs without disruption; and to approve an auction and sale process.

The Company's legal advisor is Nixon Peabody LLP; its financial and restructuring advisor is CM&D Management Services LLC; its industry expert is Unicorn Partners, LLC; and its investment bankers are Stifel, Nicolaus & Company and Peter J. Solomon Company.

Additional information on the restructuring is available on the Company's website at

http://www.cynergydata.com/restructuring .

Review: False Layer of Security = Insecurity

This is the "Type" of Security That Will Empty Your Bank Account

Excerpts from the Economic Times

All one needs to do to make an unauthorized transaction from your card is to steal three security details, namely your card number, card expiry date and 3-digit or 4-digit card verification value (CVV) number. But now some banks are requiring a fourth step..."typing" a password. (Why don't they just ask you to type in your social security number. Only you know that right? LOL) The point is, you can type all you want...it doesn' make it safer, in fact the opposite is true...it just means you have to jump through more hoops to make a purchase. Where's the convenience? (I stopped looking for security long ago. Why?

Because banks are still instructing you to "type!" your personal information into boxes in a browser. How dangerous is that? Pretty dangerous based on yesterdays headline from Gartner which simply states: Online Banking Dangerous! Why? Well, besides keylogging, just click on the box on the left to enlarge and see what has happened to the state of the malware threat from Janaury to July. Besides, it's clear from the paragraph below that the purpose of this "added layer of non-security" is to provide a false sense of one and to PIN the fraud liability on the consumer!

This is what bankers have to say on the subject:

1. If the wrong password is entered as part of this extra authentication, the bank informs e-commerce merchant and if the merchant still goes ahead with the transaction, it becomes merchant’s liability

2. On the other hand, if the password is correct even if customer disputes the transaction, it is still a customer’s liability.”

(Hmmm...interesting. It appears that from now on, fraud is now either the merchants liability or the consumers. Didn't see a scenario where it was the banks, did you?) Stumped? Here's what does the new security layer implies for you as a cardholder. Editor's Note: It's no accident they wrote: "Implies"... (vs. Provides...because all it provides is the hacker the fourth layer of information to prove to the bank it's not them hacking into the account.)

“From the cardholders’ perspective, (Editor's Translation: "perception") another layer of protection gives a lot more comfort in terms of security for the online transactions using credit/debit cards . (reality: another layer of this type of non- protection simply provides another way for hackers to intercept financial data, whether it be via malware (see malware growth chart above right) keylogging, phishing, XSS, etc.

Though it will also mean you may have to go through another step to complete your transaction online (the extra step is only there to determine whether banks hold the merchant or consumer is liable for the fraud) but doing that (from the banks perspective) is always better than having to deal with fraud and face the risk of losing your hard earned money,” says Basant Shroff, associate director, financial services — advisory services, Ernst & Young.

Editor's Note:

This is what I have to say on the subject.

This is such Bullcrap! Adding another false layer of "bullcrap protection" will "only" provide a bullcrap "false sense of security"

Adding another bullcrap step which they say will get rid of the bullcrap fraud actually provides hackers with "ANOTHER OPPORTUNITY" to steal your money.

C'mon people! Read between the lines on this one. It's 100% BS.. Let me sift through the stink here.

Consumers have fears about security, so they are cajoled, no scratch that, "fooled" into thinking online shopping is more secure because banks added another layer of "Emperor's Clothing."

So, in reality, the only thing they have provided here is yet another step for hackers to steal passwords under the "false pretense" of "enhanced security."

Question: If it's truly safer, then why have they covered their butt by stating that if the password is correct, (it doesn't matter if you dispute the transaction)...you are liable! If it was truly secure, then they would assume liabiility!

Talk about stanky!...open the windows, turn on the fan, spray some air freshener, scratch that, call in the fumigator! This is Smoke and Mirrors, plain and simple.

As per RBI figures, Indian banks lost out on almost Rs 37 crore in 12,959 credit card fraud cases reported last year.

(Editor's note: Hence the introduction of a "third new layer" of authentication designed to shift bank liability to merchants and consumers in a most "shifty" way.

According to the article, "Some banks, in fact, have gone a step ahead creating the security wall." (Editor's Note: Wait til you read this one. Are you strapped to your chair? Because I almost fell out of mine when I read the folowing.

For instance, while generating 6-digit PIN as an additional security layer at ICICI Bank, you are also asked to type a message, known as personal assurance message. (PAM).

(Editor's Note: Add an S to be beginning of that word and you'll find out how the bad guys will phish your PAM silly) This PAM is known only to you. (Editor's Note: Are they joking? For how long? Here's for how long. Until you "type" it into a box somewhere....!)

“When you type your credit card number on the merchant’s website, "IT" will take you (what/who will take me?) to the bank’s website to complete the transaction, where you need to "type" in the PIN,” explains a ICICI Bank spokesperson.

Editor's Note: This is beyond bullcrap, it borders on insane. What's so hard to understand that it's the stupid typing of their passwords, usernames, card numbers, this new "PAM" garbage, etc. that is the root of the problem. So the NEW system now asks you to type, even more of your information into boxes and double/quadruple your chances of getting hit by fraud.

Another question: What is this "IT" that takes me to the bank's website? It "IT" the web browser? Is "IT" an API that simply takes you to another website? There is NO WAY anyone could know whether or not they are being redirected to a legitimate versus a cloned bank website.

This is their idea of the future of ecommerce? To increase risk by creating more steps which require more typing?

Why is that so "puzzling" for supposedly "learned" people to understand that the problem IS the typing? See blog post entitled: "It's the Typing Stupid"

Suppose that after you "type" your credit card number on the merchants website, you are "redirected" to a "cloned bank website?" Hackers can do this in one of many ways. And how would you know? The cloned website looks authentic.   The "https" says it's authentic. (for those who think that still means anything) Maybe it will display their EV SSL certificate!    Ooops, nevermind. Those were exposed last week.

Anyway, once you get to either the bank website, you follow the bank instructions and "type" in your PIN.   Even if you ARE on the "legitimate" website, hackers can steal whatever you type.   If you are on a cloned bank website guess what happens after you "type" your PIN? Did you say your bank account gets emptied. Correct you are.

Now what? You have to try and get your money back right? Well, here's the bad news...according to this article, and I quote: "if the password is correct and even if customer disputes the transaction, it is still a customer’s liability.” Oh...now I get it. They just shifted the responsibility of the loss from the bank onto the consumer. So, I guess this post is directed at consumers:   "If you expect a secure eCommerce transaction, you won't "type" anything into the browser. It's really not that hard to understand. Is it?   If it is, take a look at some of the related articles below.

How Can HomeATM's Technology Help?

HomeATM is proud to offer consumers the immediate availability of our PCI 2.x Certified SafeTPIN, a personal credit/debit card reader that keeps your credit card information and identity completely safe when you’re banking or shopping online. Simply plug the SafeTPIN into your computer’s USB port, (no software or driverss needed) visit your favorite online banking site and swipe your card and enter your PIN exactly like you would at an ATM. There is no safer way to log in to your online banking account. When it comes to shopping, just visit your favorite shopping site, swipe your credit card and the SafeTPIN scrambles and 3DES encrypts the user’s track2 data before it reaches the user’s computer or Internet providing instant protection from malicious software attacks.

HomeATM provides complete End to End Encryption (Zones 1-4) for Track2 data. (to the Card Brands) PIN Debit transactions via HomeATM provide 100% "Zone 1 through Zone 5" (including Card Brands) End to End Encryption.

Regarding our PIN Debit transactions...there is not an ePayment method that is safer. Period. The ONLY PCI 2.x PIN Entry Device designed for eCommerce in either hemisphere. With HomeATM's solution, the consumer will NEVER TYPE. HomeATM has a pending patent on assigning PIN's to credit cards via our PIN MY Card application.

Weapon of Phish Destruction - The HomeATM

The following is a reposting of an article I did on August 20th, talking about how banks should stop giving away your log-in details by requiring you to type vs. swipe. (in this particular case, Citi could save $88 bucks by giving away our PCI 2.x Certified persona magnetic card/PIN Entry Device) vs. giving away $100 bucks.

HomeATM's Weapon of "Phish Destruction"...

There a lot of banking promotions cropping up designed to "lure" customers over.

Want to lure them over? Use phishing. Did I just say "use phishing" to lure them over? I did.

$100 isn't going to do it. When it comes to innovative marketing ideas, bribing a customer has never been near the top of the list. But...instead of customers being lured away from your bank by becoming a victim of phishing, "lure" them to your bank by using "phishing" as bait. It'll work hook, line and sinker.

Here's what I'm thinking. How about running an innovative promotion in which a bank guarantees their customer is 100% protected from phishing. If you lure them by protecting them from the bad guys (which would also protect the $1000's, not $100, of dollars in their bank account), you would attract more customers than $100 would attract AND, at the same time, enhance your bank's image. It's all about security. Here's proof:

HALF (49%) Would Consider Changing Banks Following Card Fraud...22% "Would" Change Banks!

Editors Note: Wow, if I was a financial institution offering "online banking"that headline would haunt me 24 hours a day until I figured out a wayto either change it or use it to create an opportunity for my onlinebank to flourish.

My first thought would be: "If 50% would consider "changing banks AFTER" they get hit by card fraud/onlinebanking/phishing fraud, how many would consider "changing banks" to"AVOID" getting hit?

And to which competitor would they go?

I'd conclude that if they "left because of insecurity" they would probably "come on board BECAUSE of security."

Soif I wanted to open a portal for dissatisfied online banking customers,I would use a uniquely positioned product to ensure my customerssecurity. I'm thinking Swipe vs. Type here. Then I would think...howmany potential customers could my bank procure by "guaranteeing" onlinesecurity? Research would determine if it was millions or only"Hundreds of Thousands." I think I made my point. If not, I challenge you to continue reading...

Banks have a "serious issue" with phishing and I am suggesting that there is a low-cost solution to completely eliminating this on-going threat.

Eliminate typing and you'll eliminate phishing. First a quick backgrounder...

The nature of this beast known as "phishing" is to lure these onlinebanking folks, with a sophisticated and genuine looking trap whichincludes genuine looking emails which provide links to genuine lookingsites. (a new "type" of bait and switch)

Once there, users are simply instructed to do what they've been programmed to do since day one with online banking. And therein lies the problem...

They are told to "type" in their username and password to log-in.

Problem is, once they "type" in their "username | password" they provide full access to their accounts to the phisheries.

Ifyou haven't figured it out already, (something phishy goin' on here) allow me to point out the majorflaw in this process...

If online banking customers had not beenoriginally programmed to "type" anything into a box the first place, then this type of phishing would not have cropped up in the second place. A simple case of "cause and effect."

Case in point: Imagine if you will, that when ATM's first came out, users were instructed to "make up" a username and password for whichwould have provided full access to ATM's? How smart would that havebeen?

Fortunately the banks were smarter than that and they required that their ATM customers insert their card into a built-in card reader AND enter their PIN. Two factor authentication 101. What you "have" (card) and what you "know" (PIN)

Why should it be any different for online banking log-in?

What has happened since then to make them believe "typing" is safer than "swiping?" Why are they suddenly dissin' the card?

Window of Opportunity

Instead of dissin' the card, I say "DISCARD" the antiquated username and password log-in process and instruct customers "USE THEIR CARD" (what they have) and their PIN (what they know) thereby replicatingthe exact same process these customers use gain access to an ATM.

True2FA. The only difference would be that authentication would be done inthe safety (no skimmers/no cameras) of the online banking customers own home...with a PCI 2.x certified (not compliant..."certified") personal PIN Entry Device. (providing 2FA 3DES E2EE DUKPT Security)

If the online banking community introduced their customers to a simple(not) new log-in process, one whereby they require that theironline banking customers log-in the "same way" they do at ATM's...by "swiping" with "THEIR CARD, and securely entering "THEIR PIN" they would greatlyenhance the security of their online banking sites.

This two factor secure log-in would eliminate the issues they arehaving with these phishing attacks altogether. A secure 2FA 3DES E2EE DUKPT log-in would also eliminate threats created by cloned bank websites, cloned cards, DNS Hijacking,etc. The data is never in the clear...so when it comes to becoming a victim of fraud, your customer is in the clear.

In effect, banks would be arming their online banking customers with aweapon of phish destruction, one that fights cybercrime and "empowers"them as mini-profit centers. Does anyone disagree with the statementthat "Bill Payments, Money Transfers, and secure online transactions"ALL make money for banks? (again, see previous post)

That said, I humbly suggest it's high time to "studythree key issues" more closely.

Let's look at "these issues" one at a time:

Bank "ISSUES" the Card,

Bank "ISSUES" the PIN,

Banks ISSUES a $12 PCI 2.x Certified 2FA 3DES E2EE DUKPT Secure Card/PIN Reader

$12! Yes (in quantity)...banks could save $88 per customer (compared to Citi's offer above) and PROTECT their customer. Protect them from what? Did you know that the average phishing attack costs the bank and thebank customer $350. Want proof?

Okay, here it is from Gartner Research:

Phishing attacks are costly:

According to research firm,Gartner, banks, online payment organizations and other financialinstitutions are bearing most of the financial cost of phishingattacks.

(A survey of nearly 4,000 US consumers revealed a 40% increase in the number of phishing victims in 2008 over the year before to five million.)

The average loss was $352 per phishing attack, but consumers said they had recovered 56% of their losses from the financial institutions involved. (sounds like the $100 bribe above is lost in the first phishing attack to me)

"The findings underline the fact that the war against phishing is far from over," said Avivah Litan, analyst at Gartner. (Yes, the very same Avivah Litan who says "never" enter your PIN on the Internet unless it's hardware based)

Want to read more on this subject?...click here.