ABSTRACT
Many vendors of hardware, software and services now talk about information security, rather than just information technology (IT) security unfortunately, this may be more about linking their products to the latest issues, such as ISO 27001, in order to sell more, rather than about a genuine interest in security information. Manufacturing credit cards requires serious security measures. The motivation for an attacker is large and the potential payback huge. Therefore the time and effort likely to be put into an attack is substantial. Detailed testing and analysis of security vulnerabilities is required. HackerZ was able to change the nature of the audit, moving from physical security to IT security. An area of particular interest to HackerZ is credit card data. This is a particularly attractive target as there is a ready market for the information. HackerZ needs to assume the role of an auditor that will get special attention and privileged access.
