Luckily, these businesses aren't required to perform audits, nor is it mandated that they submit self-assessment questionnaires or network vulnerability scan
results to card acquirers.
When a network vulnerability scan
occurs and vulnerabilities are found on any scanned system, those vulnerabilities are automatically matched to existing Common Vulnerabilities and Exposures-based (CVE) signature rule sets for those exploits and then loaded into the Detection+Prevention Module.
Fujitsu is believed to be the first major retail IT vendor to offer customers a network vulnerability scan
that enables retailers to assess - and fix if necessary - their compliance with the new cardholder data security requirements established by both MasterCard and Visa.
It was designed to permit Tenable's customers to detect network vulnerabilities without performing a network vulnerability scan
A network vulnerability scan
determines whether a computer has a TCP port in an open or vulnerable state, which could allow unknown or unauthorized Internet communication.
2 of the PCI DSS states, "Run internal and external network vulnerability scans
at least quarterly and after any significant change in the network.
To maintain their compliance, FINEXUS has enrolled in Trustwave's on-demand compliance management solution, TrustKeeperEeA to access the necessary tools to support on-going compliance such as quarterly network vulnerability scans
To make it easier for merchants to understand, adopt and comply with the Payment Card Industry (PCI) Data Security Standard, MasterCard is also announcing the global availability of free network vulnerability scans