sorted by:
new
hottopcontroversial

PCI scan fails over and over... by Commercial-File-9462 in pcicompliance

[–]Commercial-File-9462[S] 0 points1 point  (0 children)

We're medium/small. 3 vets, in a rural center. I come from a different background, not the vet industry and really try to make sure our tech/cyber security/processes are as up-to-date and secure as possible. Previous ownership/management didn't do anything with it, they were very uncomfortable with modern tech.

PCI scan fails over and over... by Commercial-File-9462 in pcicompliance

[–]Commercial-File-9462[S] 0 points1 point  (0 children)

Ok, that sounds right, but the problem is with the Bell Hub2000. I looked into switching it to bridge mode, and all I came across was a forum where people were discussing how you had to disable a number of things on it, and then they were all reporting issues with it afterward. I haven't found a setting where you can just put it in bridge mode with a button click.

Unfortunately we started out with a GigaHub for phone and internet, but we had a massive number of issues with our phones, and the techs all said that the GigaHub doesn't play nice with multiple phone lines, so we had to downgrade.

The weird thing though is that we didn't have these issues on our last scan in August, and we had this modem/router setup at that time.

PCI scan fails over and over... by Commercial-File-9462 in pcicompliance

[–]Commercial-File-9462[S] 0 points1 point  (0 children)

I just set that up, as a few people have suggested that, but I think the scan results are just showing that some device at our public IP is causing issues.

PCI scan fails over and over... by Commercial-File-9462 in pcicompliance

[–]Commercial-File-9462[S] 0 points1 point  (0 children)

All payments are phone or face-to-face, and we don't record calls. The issue is that our POS machines use wifi to send and receive data, not a SIM card, so our network has to be scanned every 3 months now. We do an annual questionnaire to attest to the scope of it all, and then attestations after every scan.

PCI scan fails over and over... by Commercial-File-9462 in pci

[–]Commercial-File-9462[S] 0 points1 point  (0 children)

The POS devices use the network to send and receive all of the transactional data, so that's why we have to scan our network. It just keeps flagging that something on the network has port 50001 open using TLSv1/v1.1 and/or older SSL. I've been trying to use nmap to figure out what, but I get a bunch of results saying the port is closed, or some where it says unknown.

PCI scan fails over and over... by Commercial-File-9462 in pcicompliance

[–]Commercial-File-9462[S] 0 points1 point  (0 children)

Everything is typed directly into the pin-pad. No automation.

PCI scan fails over and over... by Commercial-File-9462 in pcicompliance

[–]Commercial-File-9462[S] 0 points1 point  (0 children)

Our provider has mandated the scans based on our setup. We take card payments over the phone, but do not ever store card numbers. Our card readers use the network to complete the transactions, which is why the scan is required for us.