Category: PCI DSS Requirement 2
Do not use vendor-supplied defaults for system passwords and other security parameters.
PCI DSS Requirement 2 relates to individuals with malicious intent or hackers who will first attempt to use typical vendor default usernames and passwords as well as other vendor default settings or configurations in order to compromise an entities environment, in the search for sensitive cardholder data. These default usernames, passwords and settings are trivially known and shared by hacker communities. These malicious individuals or hackers will attempt to compromise the environment from both the external as well as internal perspective, thus all aspects of an entity must be protected.
CISOfy – Lynis
Lynis Enterprise performs security scanning for Linux, macOS, and Unix systems. It helps you discover and solve issues quickly, so…
- Rating
- Views
- 25
Qualys
Qualys VM is a cloud service that gives you immediate, global visibility into where your IT systems might be vulnerable…
- Location
- Global PCI DSS Solutions
- Rating
- Views
- 1440
Saint
SAINT is certified (#4268-01-08) by the PCI Security Standards Council as an Approved Scanning Vendor (ASV). As an ASV, SAINT…
- Location
- Global PCI DSS Solutions
- Rating
- Views
- 749
Comodo
Our dependence on computers and the Internet grows with each passing day, and so, too, does our vulnerability. The threats,…
- Location
- Comodo Group, Inc. 1255 Broad Street, Clifton, NJ 07013 , United States
- Rating
- Views
- 715
Sensepost
SensePost Managed Vulnerability Scanning (MVS) is a fully Managed Vulnerability Scanning service supported by SensePost and designed for the enterprise.…
- Location
- Global PCI DSS Solutions
- Rating
- Views
- 683
Recent Comments