LURHQ Recognized as a Payment Card Industry Data Security Standard Compliant Vendor by Completing MasterCard SDP Program

LURHQ's Managed Vulnerability Scanning Service successfully completes the rigorous MasterCard Site Data Protection (SDP) compliance testing process.

CHICAGO, IL, August 30, 2005 - LURHQ, the leading provider of Managed Security Services for Security Professionals, today announced the successful completion of MasterCard Site Data Protection (SDP) scanning vendor testing process. As an SDP approved scanning vendor, LURHQ is allowed to help online merchants evaluate the security of their Web sites that store MasterCard account data, and achieve compliance with the Payment Card Industry (PCI) Data Security Standard.

LURHQ has achieved approved status by proving their ability to detect, identify and report vulnerabilities common to flawed web site architectures and configurations. These vulnerabilities, if not patched in actual merchant Web sites, could potentially lead to an unauthorized intrusion. By proactively identifying and providing the opportunity to remedy such vulnerabilities, SDP-approved scanning solutions offer a means for reducing risk of intrusion and data compromise.

The SDP Scanning Vendor Approval Process is an expansion of MasterCard's Site Data Protection Program™, a comprehensive, proactive and cost-effective program designed to help protect the online and physical infrastructures of its customer financial institutions, merchants and other payment processors holding MasterCard account information.

"Being recognized by MasterCard SDP as a PCI compliant vendor shows the immense amount of effort we have put into designing and administering our Managed Vulnerability Scanning Services," said LURHQ COO Steven Drew, "This, combined with the industry-leading reporting capabilities offered by our Sherlock Enterprise Security Portal, enables us to form true partnerships with retailers and credit card processors."

The Scanning Vendor Approval Program requires a two-step process. The first step is to complete an online application form, which can be found at the SDP Web site. The application provides MasterCard with an overview of the applying organization, along with a detailed assertion by the security vendor that their solution is compliant with or exceeds the requirements set forth in the PCI Data Security Standard. After applying for compliance testing, the second step is for vendors to undergo a rigorous evaluation cycle that spans across a wide range of Web servers, firewalls, and operating systems - an environment controlled and managed by MasterCard.

"The Site Data Protection Vendor Approval Process reflects our ongoing commitment to helping our customers and online merchants evaluate and improve the security of their online and physical sites in a timely and affordable manner. The end result we are striving for - improved overall channel security - is a win-win for all parties involved," said Stephen Orfei, senior vice president and head of the MasterCard e-Commerce Center of Excellence.

About MasterCard SDP

The MasterCard Site Data Protection Program is a proactive, cost-effective, global solution offered by MasterCard through its acquiring members. The program provides acquiring customers with the ability to deploy security compliance programs, assisting online merchants and Member Service Providers to better protect against hacker intrusions and account data compromises. The program takes a proactive approach to security by identifying common possible vulnerabilities in a merchant web site and makes recommendations for short-and long-term security improvements. The solution addresses the security issues that online merchants and their acquiring banks face in the virtual world, and concerns arising from these issues, such as Internet fraud, chargebacks, brand image damage, consumer information safety and privacy and the cost of replacing stolen account numbers.

About LURHQ

LURHQ is the leading provider of Managed Security Services for security professionals. Founded in 1996, LURHQ empowers security professionals across its extensive base of enterprise clients through an integrated suite of Managed Security Services designed to deliver an effective Threat and Vulnerability Management solution. By combining scanning, intelligence, device management, monitoring and security information management processes into one comprehensive system, LURHQ's Threat and Vulnerability Management solution allows organizations to easily demonstrate Compliance, increase Efficiency, and enhance their Security Posture. Additionally, LURHQ's OPEN Service Delivery provides industry-leading visibility, keeping clients in control and resulting in a true partnership that yields maximum business value.