Category: PCI DSS Requirement 2
Do not use vendor-supplied defaults for system passwords and other security parameters.
PCI DSS Requirement 2 relates to individuals with malicious intent or hackers who will first attempt to use typical vendor default usernames and passwords as well as other vendor default settings or configurations in order to compromise an entities environment, in the search for sensitive cardholder data. These default usernames, passwords and settings are trivially known and shared by hacker communities. These malicious individuals or hackers will attempt to compromise the environment from both the external as well as internal perspective, thus all aspects of an entity must be protected.
Tripwire
Tripwire product offering includes advanced threat, security and compliance solutions used by 9,000 plus organizations, including Fortune 500 companies (Tripwire…
- Location
- Global PCI DSS Solutions
- Views
- 337
Rapid7
Rapid7 is a PCI Approved Scanning Vendor (ASV), which means we can help you achieve compliance with PCI DSS. Our services…
- Views
- 384
Qualys
Qualys VM is a cloud service that gives you immediate, global visibility into where your IT systems might be vulnerable…
- Location
- Global PCI DSS Solutions
- Views
- 346
Saint
SAINT is certified (#4268-01-08) by the PCI Security Standards Council as an Approved Scanning Vendor (ASV). As an ASV, SAINT…
- Location
- Global PCI DSS Solutions
- Views
- 227
Comodo
Our dependence on computers and the Internet grows with each passing day, and so, too, does our vulnerability. The threats,…
- Location
- Comodo Group, Inc. 1255 Broad Street, Clifton, NJ 07013 , United States
- Views
- 212
Sensepost
SensePost Managed Vulnerability Scanning (MVS) is a fully Managed Vulnerability Scanning service supported by SensePost and designed for the enterprise.…
- Location
- Global PCI DSS Solutions
- Views
- 190