latest updates from easySERVICE™
Only 44 percent of banks, payment processors and merchant service providers are currently offering state-of-the-art security tools and services to small businesses despite the virtual pandemic of data breaches afflicting consumers worldwide, according to a new survey from payment security and compliance solutions provider ControlScan and the Merchants Acquirers’ Committee.
While high-profile incidents at Target and Neiman Marcus generate the most headlines and anxiety, small businesses and their customers remain the most vulnerable to security breaches – and also the most underserved.
Among the MSPs, ISOs and acquirers that are providing additional security solutions to small businesses, basic security technologies such as tokenization and point-to-point encryption are the most common additional solutions offered.
“The latest acquirer survey reveals great opportunities for MSPs, including the ability to offer merchants risk-reducing tools as well as justification for being more aggressive in charging non-compliance fees,” Susan Matt, CEO of payments consulting firm ThoughtKey, said in the report. “MSPs who seize these opportunities will achieve greater risk reduction overall, gain revenue and ensure merchant retention.”
More often than not, small and midsize businesses are merely provided access to the Payment Card Industry-required self-assessment questionnaire and some limited external vulnerability scanning tools.
In other words, it’s often way too little and way too late.
Network security software provider Fortinet recently issued an equally sobering research report that found that among 100 SMBs with less than 1,000 employees, 22 percent were not in compliance with PCI DSS and another 14 percent didn’t know if they were compliant or not.
But for most small and midsize businesses, their inability to effectively respond to or protect against cyberattacks is primarily the result of limited IT budgets.
The survey did find that MSPs are seeing improvement in small-merchant PCI compliance validation – respondents said their portfolio compliance rates are now above 40 percent – but that has also coincided with a 23 percent spike in breach incidents within their merchant networks.
Source: Associated Press