Friday, 11 March 2011

Cord Blood Registry Loses Relevant Data on 300,000 Clients

The Cord Blood Registry (CBR), USA's largest stem cell bank, admitted that it lost unsecured personal data on 300,000 cord bank clients, a breach that could cost it millions to address. The data were contained on LTO4 storage tapes and a Dell E6500 laptop that were stolen from a CBR employee's car parked outside a San Francisco data centre on December 13, 2010, according to a report by Networkworld.

The lost data could have included client names, credit card numbers, driver's licence and social security numbers, according to CBR spokeswoman Kathy Engle. The data were not encrypted, she added.

The letters to clients informing them of the data breach were dated February 14, but some people have not yet received the letters. Explaining the delay, Engle said: "From the time of the incident, it took some time to determine the nature and extent of the data loss. CBR worked diligently to investigate the matter and engaged consultants with specialised expertise to help evaluate the risk to clients and retrace which clients should be contacted. This process did not conclude until late January".

Based on the latest research by the Ponemon Institute, the data breach could cost CBR millions (300,000 records times an average cost of $214 per lost record would come out to roughly $64.2 million, according to the latest figures).

SMARTRAC Obtains ISO 9001:2008 Certification for Its U.S. Facility

SMARTRAC N.V. announced that the company's facility in the United States has earned the International Organisation for Standardisation's (ISO) 9001:2008 certification.

The ISO 9001:2008 standard specifies quality management system requirements focused on an organisation's ability to meet quality requirements and customer satisfaction and is the worldwide most widely used and recognised quality management system standard.

SMARTRAC's site in the U.S. has also received Security Assurance Certification from NASPO, the North American Security Products Organisation, one of the strictest independent security certification processes worldwide. In addition, the production location has been qualified by U.S. governmental authorities for the high security production of RFID inlays.

The facility in the U.S. is part of the company's global network of certified high security production facilities in Asia, Europe and the U.S. which comply with a range of quality and security standards, among them a site certificate supporting the EAL5+ assurance level.

Now Google Places and Hotpot in Las Vegas

Google has expanded its NFC-enabled ratings and recommendations service to a third U.S. city - Las Vegas, where it has begun to market its Google Places and Hotpot service.

Google is distributing NFC-enabled "Recommended on Google" window decals to restaurants and other businesses, which lets users carrying its Nexus S Android smartphones or future compatible NFC-enabled phones to tap their devices on the decals to "instantly" get information about business, said the company in a blog post.

Google has also passed out the decals in Portland, Oregon and Austin, Texas, since introducing its first NFC phone - Nexus S, in December 2010. Other NFC phones, such as Samsung's Galaxy S II, are expected to support the service out of the box. The NFC version of the Galaxy S II is expected on the market by mid-this year. Google is also building a mobile wallet for Android NFC phones that could store a variety of payment, couponing, social networking and other apps

Oberthur Technologies Appoints New Convergence and Solutions Director for the Americas Region

Oberthur Technologies selected Mehdi Elhaoussine as the new Convergence & Solutions Director for the Americas Region, reporting directly to Martin Ferenczi, Managing Director of the Americas Region for the Card Systems Division at Oberthur Technologies.

Mehdi will lead the region's activities for Oberthur Technologies payment and mobile convergent platform, including Near Field Communications (NFC) applications and fully managed Trusted Service Management (TSM) services, over-the-air (OTA) service administration platforms, mobile money and smart authentication solutions for online e-shopping and e-banking. Elhaoussine and his team will provide the Convergence & Solutions services to mobile operators, banks and transit authorities.

Prior to joining Oberthur Technologies, Mehdi was employed as the EMEA region General Manager with CASSIS International, a provider of TSM platforms.

Asian SESAMES to Reward Most Innovative Technology Application

The Asian SESAMES Award aims to reward the best innovative technological application developed for the Asian Pacific market in the field of smartcards, digital security, identification, secure transactions and contactless, on March 29, 2011, the first day of CARTES in Asia. Jury members include Frank Xu, chairman of the Smart Card Forum of China and Greg Pote, chairman of the Asia Pacific Smart Card Association.

Last year's winning product was Watchdata's DBS Live Fresh 3-in-1 credit card that combined banking, transport and retail payments on a single chip dual interface smartcard and used in Singapore.

CARTES will be held 29-31 March 2011 at AsiaWord-Expo, Hong Kong. The competition is open to all companies operating in the sector.

According to a February 2011 report sponsored by MasterCard, mobile and contactless payments will experience immense global market growth over the next 5 years, reaching US$680 billion and US$320 billion, respectively. In Beijing, China Unicom launched its SIMpass in January, giving the public contactless mobile payment on thousands of buses, taxis and in businesses, including the car parks, supermarkets, restaurants, pharmacies, cinemas and public telephones. SIMpass has more than 2 million users in more than 20 cities and provinces of China, including Beijing, Hunan and Jiangsu.

CreditCall Offers New End-to-End Encryption Technology for a Safer Card Payment Environment

CreditCall has launched CardEase Ultra, an End-to-End Encryption (E2EE) solution providing fraud protection from the point of card acceptance right through to settlement. As well as giving consumers greater peace of mind, it reduces complexity, time, and cost for merchants to maintain or achieve their PCI DSS Compliance.

CardEase Ultra E2EE protects cardholder data throughout the merchant's business. It makes card payments more secure since the data does not exist in plaintext form, so cannot be compromised. Businesses will be able to take significant segments of their networks outside the scope of PCI DSS scope, reducing both infrastructure and compliance costs. Payment terminal manufacturers will also benefit by selling products with the technology built-in.

In the past 5 years, Forgenix an independent, information security specialist, discovered that in over 95% of compromises investigated, the business or merchant was not aware that the card data was even being held. The cost to a compromised merchant can be alarming, including bank fines for data loss, legal, forensic investigation and clean-up costs. But the biggest cost is the fraud liabilities for the compromised cards, estimated to be in the region of 750-1000 pound per card.

The End-to-End Encryption solution will be available initially in the USA supporting magstripe transactions and a Chip and PIN version will be launched later this year.

RFID and Barcode Authority Bill Arnold Joins ABI Research

ABI Research has appointed Bill Arnold as Principal Analyst, AutoID and Smart Cards. Based near Chicago, Illinois, Bill Arnold focuses his research on all RFID technology frequencies, market drivers, standards development and emerging capabilities that enables RFID to penetrate more vertical markets and applications. In parallel with and complimentary to his RFID research, Bill also conducts in-depth research for barcode scanners, emerging symbologies in barcode, as well as the market drivers, requirements and complementary capabilities for both barcode and RFID.

He brings a background of more than 25 years industrial automation sales, product marketing and technology deployment strategy to his role at ABI Research. After several years as Product Marketing Manager for Industrial Sensor Networks, Arnold was selected as "Chief Strategist" for Omron Corp's venture into the passive UHF market in 2005. He served as Omron's representative to AIM North America, the Material Handling Industry Association and Control Systems Integrators Association.

Arnold has also been a presenter at The Conference Board on RFID and has authored a guest series on RFID market adoption for RFID Solutions Online.

Note to Subscribers

If you would prefer to receive your News On Line email in plain text, please send an email with "Plain Text" in the subject line.

If you are a subscriber to our Daily News On Line service or Monthly Newsletter you are entitled to access restricted pages on our website news archive. For the username and password please send an email with "Subscriber Password" in the subject line. lesley.dann, Subscriptions Administrator, Smart Card Group.

To Unsubscribe Email Us at or click Unsubscribe

Important Information

From time to time, this news service may include industry forecasts and forward looking statements made by the companies concerned. Readers should be advised that Smart Card News Ltd cannot be held responsible for decisions and/or actions taken by readers of our news service, based on the information provided. This news is only to be distributed to persons/companies who have a contract with Smart Card News Ltd. Unless your company has gained a licence and/or written permission from Smart Card News, the contents of this news page are not to be forwarded to any other person or server. Any replication by any means without prior permission is illegal and action may be taken. If you receive this online news from a forwarded source please contact the team at Smart Card News Ltd. It is illegal to replicate this online news.

Tel: +44 (0)1903 734 677