Netflix has fired a call center worker for stealing credit card numbers from customers of the online movie service.
The unnamed employee was fired after Netflix learned about the data theft on April 4, the company said in a letter to the office of the New Hampshire Attorney General that was published online this week
via Netflix fires call center worker for stealing data.
Smaller merchants tend to rely on their acquirer or independent sales organization (ISO) to initiate PCI DSS compliance validation. Without directive or enforcement of such initiatives, many will forgo basic steps to protect their networks and their customers’ cardholder data because they feel they do not have the time or the proper resources, or they’re just not aware of the requirement, the survey found.
via Infosecurity (USA) – Small merchants make up lion’s share of credit card breaches.
Office of Inspector General (OIG) has released two reports that question HHS agencies’ efforts to secure electronic protected health information.
via OIG raps HHS agencies for lax PHI security.
Long-awaited guidelines from the PCI Security Standards Council about just what constitutes secure mobile-payments software are coming soon, promises Council general manager Robert Russo. “Look for guidance in the next couple of weeks,”
The National Institute for Standards and Technology (NIST) has published an 84-page draft of its cloud computing guidelines, NIST Cloud Computing Synopsis and Recommendations, or SP 800-146, and is seeking comment from federal agencies and the public on its recommendations.
via NIST Releases Federal Cloud Guidelines — InformationWeek.
The White House proposal, which is a comprehensive cybersecurity plan, includes a provision directing the Department of Homeland Security (DHS) “to exercise primary responsibility within the executive branch for information security
via Infosecurity (USA) – White House cybersecurity proposal shifts FISMA responsibility to DHS.