Monday, February 22, 2021

Did you temporarily lose the ability to accept credit and debit card payments? This may be why.


WorldPay from FIS

Delayed - TLS v1.2 security upgrade
Express Flickering of the lights event delayed

The Express platform 'flickering of the lights' event scheduled for today, Wednesday February 17, has been delayed until Monday, February 24 at 2:30 p.m. ET due to the winter storm impacting many cities across the U.S. We apologize for any inconvenience this may have caused.

Worldpay from FIS is ending support of TLS 1.0 and 1.1 on our MercuryPay and Express platforms.  

As a follow up to the communication below, Worldpay from FIS will be flickering the lights for merchants still processing on TLS 1.0 and 1.1. “Flicker the light” events, where Worldpay proactively ‘turns off’ the no longer compliant TLS 1.0 and 1.1 for a brief period will take place to identify potentially impacted merchants.

The dates and platforms impacted are:

MercuryPay: February 16 at 2:30 p.m. ET - COMPLETE
Express: February 24 at 2:30 p.m. ET - DELAYED

The flickers will last for 30 minutes and merchants using TLS 1.0 or 1.1 will be unable to process during the flicker window.

You are receiving this notice because you may have merchants that are utilizing the outdated security protocols known as Transport Layer Security (TLS) 1.0 and 1.1 to submit transaction to Worldpay from FIS on our MercuryPay or Express platforms.

The PCI Security Standards Council has declared that TLS 1.0 or 1.1 no longer meet minimum security standards due to security vulnerabilities for which there are no fixes.

Worldpay from FIS will end all support for TLS 1.0 and 1.1 after February 28, 2021 on our MercuryPay and Express platforms.

Customers who are still using TLS 1.0 and 1.1 and who have not updated their system by that date will no longer be able to process transactions with Worldpay from FIS.

Worldpay from FIS will be emailing merchants who may be utilizing these outdated protocols with common steps to prepare for the end of support for TLS 1.0 and 1.1. The merchants’ required actions will vary, and these steps are outlined in the attached document.

(note from Kevin - if you were effected by this, you need to look at updating your computer and possibly your point of sale software ASAP. The quickest and least expensive solution is to put in stand alone payment terminals that do not connect to your point of sale system. I realize that stand alone payment terminals mean lost revenue due to miss-keyed payment totals but it will at least be a temporary solution while you see what hardware and software needs to be update so you are TLS 1.2 compliant).

No comments:

Post a Comment