Visa and FireEye, have announced their intention to co-develop tools and services to help merchants and issuers protect against advanced cyber attacks targeting payment data.
The Visa and FireEye Community Threat Intelligence (CTI) offering will bring together threat information from both companies so merchants and issuers can quickly detect and respond to attacks against their IT and payment infrastructure.
FireEye will operate the web based service to enhance stakeholders’ knowledge of attacks targeting the ecosystem, improving current industry practices of sharing threat intelligence via e-mail or static documents.
Visa and FireEye initially plan to offer tools that will provide greater cyber intelligence and enhanced threat monitoring and will continue to work together, along with FireEye’s cyber forensics group Mandiant, to add more capabilities tailored to issuers and merchants of all sizes.
Many data compromises have similar attack patterns reinforcing the importance of collective knowledge sharing to help merchants prepare and monitor for known threats. Enhanced monitoring of malicious attacks and suspicious payment activity will help in alerting merchants of potential compromises. Identifying these data compromises earlier means fewer stolen accounts and greater protection for their customers.
David DeWalt, CEO of FireEye, says “The threat environment for merchants is more hostile than we’ve ever seen - attack groups focused exclusively on stealing consumer data are continuously expanding their operations and employing new techniques. This new collaboration brings together two industry leaders to help protect merchants and payment data and minimize the impact of attacks by sharing information”.
Charlie Scharf, CEO of Visa Inc, says “Although we are leading efforts to render stolen data useless through smart technologies, data security remains foundational for merchants. We’re pleased to be working closely with FireEye, which has been at the front lines identifying and investigating some of the most significant compromises around the world.”
- Security Watch: AusCERT announces new partnership at conference opening
- Security Watch: Woolworths appoints CISO
- AusCERT 2015: Data retention is bad news for citizens
- ISO/IEC 27001:2013 – what’s new?
- Insider security threats growing but budget to stop them is not: survey
- Security Watch: A10 and ThreatSTOP announce partnership
- Security Watch: ZTE chooses AVG for mobile protection