BuntSoft | The Bunt Software Weblog

Bunt Software approved by the PCI Standards Council as a Qualified Integrator and Reseller

by Don Bunt 10. May 2016 19:40

Bunt Software is pleased to announce that they have been approved by the PCI Standards Council as a Qualified Integrator and Reseller. QIR's are qualified in the secure installation of Payment Application Data Security Standard (PA-DSS)-validated payment applications into merchant environments in a manner that facilitates PCI Data Security Standard compliance.

Numerous breach investigations have shown that incorrect installation and/or maintenance of payment applications creates opportunities for merchant networks to be compromised. Integrators and resellers play a key role in the payments ecosystem, as merchants depend on these service providers to install, configure, and/or maintain their validated applications. 

Lookup "Bunt Software" on the PCI council website to verify our certification. Whether you are installing SMP and SMPLink™ or something else, Bunt Software can help.

According to a Visa Security Bulletin dated 29 Oct 2015, starting 31 March 2016, newly boarded merchants must use only QIR certified professionals to install their POS applications. Starting 31 January 2017, the same applies for existing merchants.

Bunt Software can help to install your POS software in a PCI compliant manner.

With the help of Bunt Software, Panasonic has released System Manager Pro version 4.0 powered by SMPLink™. SMPLink™ is installed with every copy and SMP version 4.0 supports Windows 7, 8 and 10.

SMPLink™ is credit card interface software developed specifically for Panasonic System Manager Pro (SMP) users that integrates seamlessly with Merchant Link's TransactionVault® - a system that stores sensitive cardholder data in a secure vault - not on your back office computer.

SMPLink™ has had over 910 sites installed and has processed over 136 million transactions to date.

SMPLink™ is the ONLY PA-DSS compliant credit interface for the Panasonic System Manager Pro (SMP) pos system.

SMPLink™ is safe from the Heartbleed bug

by Don Bunt 14. April 2014 19:40

The Heartbleed Bug is a serious vulnerability in the popular OpenSSL cryptographic software library. The Heartbleed bug allows anyone on the Internet to read the memory of the systems protected by the vulnerable versions of the OpenSSL software. For more information about the Heartbleed Bug, see the Heartbleed website.

SMPLink™ does NOT use OpenSSL or any derivative of it. It is therefore NOT subject to the Heartbleed vulnerability.

On a similarly important note:

SMPLink™ users should no longer be using Windows XP because Microsoft support has run out and your system is vulnerable.

There is no need to worry about changing pos systems because both SMP and SMPLink™ run on Windows 7 (32-bit).

SMPLink™ is credit card interface software developed specifically for Panasonic System Manager Pro (SMP) users that integrates seamlessly with Merchant Link's TransactionVault® - a system that stores sensitive cardholder data in a secure vault - not on your back office computer.

SMPLink™ has protected over 850 sites and has processed almost 90 Million PCI compliant credit transactions.

SMPLink™ is the ONLY PA-DSS compliant credit interface for the Panasonic System Manager Pro (SMP) pos system.

Who will enforce the credit card rules?

by Don Bunt 24. July 2013 09:58

Eighteen months ago, Visa notified credit card processors that the Panasonic System Manager Pro (SMP) software was vulnerable. Most major quick service restaurant brands are represented in the 200+ vulnerable sites still processing credit transactions with this software.

Instead of forcing the vulnerable sites off the software, many of the processors have instituted PCI non-compliance fees. Eighteen months later, credit card processors continue to process transactions from these vulnerable sites.

“VNPs and agents must decertify all vulnerable payment applications.” When Diana Greenhaw, Global Payment System Risk at Visa was asked about this mandate, she stated that it "requires acquirers to discontinue boarding new merchants using known vulnerable applications and develop plans for transitioning existing merchants to different applications." Eighteen months later, Visa continues to allow transactions from these vulnerable sites.

Merchant Link has sent many notifications to both the processors and sites. They have conducted multiple webinars and conference calls to educate the affected Panasonic SMP sites.  Despite these efforts, their position is as follows: “Ultimately it is the banks’ responsibility to ensure that vulnerable applications are not supported on their systems” according to Dan Lane, Merchant Link’s President, “and we will work with them to support those efforts.” Eighteen months later, Merchant Link continues to process transactions from these vulnerable sites.

Elavon ended support for protobase with SMP several years ago, but there are still 100+ sites using this software albeit without support.

The PCI Council states that they only create the rules and do not enforce them.

Quick service restaurant brands are equally guilty of not forcing their franchisees to stop using the SMP software. One of the top five QSR brands represents over half of the vulnerable sites. Even though the parent company was notified, eighteen months later, they continue to allow transactions from these vulnerable sites.

Who will enforce the credit card rules? No One!

The ultimate responsibility for remaining PCI compliant lies with the Merchant. 

So what happens if these sites continue to process with vulnerable applications? Nothing ... until they are breached.

1. They will pay large fines

2. Their restaurant brand reputation will suffer

3. They may lose their franchise

4. They may lose their ability to accept credit cards

Get PCI compliant now by installing SMPLink™.

SMPLink™ is credit card interface software developed specifically for Panasonic System Manager Pro (SMP) users that integrates seamlessly with Merchant Link's TransactionVault® - a system that stores sensitive cardholder data in a secure vault - not on your back office computer.

SMPLink™ has over 750 sites installed and processes over 3 Million PCI compliant credit transactions per month. SMPLink™ has processed over 65 million transactions to date.

SMPLink™ is the ONLY PA-DSS compliant credit interface for the Panasonic System Manager Pro (SMP) pos system.

SMP has been Decertified

At the end of January, 2013, hundreds of Panasonic System Manager Pro (SMP) users got a rude awakening. This is when the SMP software was decertified by their VisaNet processor.

Click here for more information.

Month List

About Bunt Software

Bunt Software is the maker of SMPLink™, a PA-DSS validated credit card interface software developed specifically for Panasonic System Manager Pro (SMP) users that integrates seamlessly with Merchant Link's TransactionVault® - a system that stores sensitive cardholder data in a secure vault - not on your back office computer.

 

Bunt Software develops innovative software solutions on a project or time & material basis. Our turnkey software development services include Commercial Product Development, as well as Software Architecture, Design and Development.

 

Our experience and expertise spans a wide array of industries/markets, including:

 

·     Retail

·     Financial

·     Manufacturing

·     Telecommunications

·     Security 

 

 

Copyright © 2010 Bunt Software Incorporated. All Rights Reserved.