SKIDATA, Inc., a wholly owned subsidiary of SKIDATA AG has been made aware of circulation of misinformation regarding the software of Federal APD systems.
3M exited the parking industry two years ago and is no longer supporting or updating EFMS or Scan Net. SKIDATA is not supporting the existing 3M Federal software applications but has instead utilized the purchased intellectual property and developed a proprietary middleware that bridges the 3M equipment to SKIDATA’s flagship PA-DSS V 3.2 validated application Parking.Logic.
Please be advised that any merchant processing credit cards using Federal APD equipment does not meet the current PA DSS requirements and we urge you to take action immediately. The only exceptions are those sites that already have a SKIDATA/3M solution in place. Facilities that are not properly supported by the manufacturer are not compliant with requirement 6* of the PCI guidelines and are prone to data breaches, malware and high financial penalties:
- The non-compliance fines by credit card companies and acquirers can reach $100,000 per month. In addition there are credit card data security breach fines of up to $90 per cardholder.
- According to the Ponemon Institute’s Cost of Data Breach Study, the cost of an average data breach in 2016 was $7.01 million.
The lack of software maintenance of Scan Net and EFMS may also lead to additional risks like viruses (e.g. WannaCry), data leaks and non-compatibility with MasterCard’s recent BIN range change.
SKIDATA is dedicated to supporting PCI compliant environments so that owners and operators avoid costly security breaches. Our solution also aims at protecting your investment by allowing functional Federal devices to operate on a state of the art SKIDATA software system with a PA DSS 3.2 compliance.
Throughout the market there are still many locations using EFMS or Scan Net and are not aware of this imminent risk. With this notification we want to counter the circulating misinformation and strongly encourage any owner or operator of a Federal APD site to contact their QSA or PCI compliance professional for verification.
SKIDATA is an international leader in the field of access solutions and their management. Almost 10,000 SKIDATA installations worldwide in ski resorts, shopping centers, major airports, municipalities, sports stadiums, trade shows, and amusement parks provide secure and reliable access and entry control for people and vehicles. SKIDATA places great value in providing solutions that are intuitive, easy to use, and secure. The integrated concepts of SKIDATA solutions help clients optimize performance and maximize profits. SKIDATA Group (www.SKIDATA.com) belongs to the publicly traded Swiss Kudelski Group (www.nagra.com), a leading provider of digital security solutions.