Tokenization Vs. End to End Encryption #PCI
A recent study conducted by PriceWaterhouseCoopers on behalf of the Payment Card Industry Security Standards Council shows that end to end encryption and tokenization are the top choices for companies seeking to employ new emerging technologies to protect payment card and other critical data. And both approaches have their public proponents, including Heartland Payment Systems [...]
HEARTLAND Lawsuit filed #PCI
Months before announcing the Heartland Payment Systems (HPY) data breach, company CEO Robert Carr told industry analysts that the Payment Card Industry Data Security Standard (PCI DSS) was an insufficient protective measure.
This is a class action lawsuit brought by the FI Plaintiffs,
individually, and on behalf of similarly situated banks, credit unions and
other financial institutions that [...]
PCI virtualization SIG closer to proposing changes to standard
The PCI Virtualization Special Interest Group is trying to find consensus before proposing ways to add the technology to the Payment Card Industry Data Security Standards (PCI DSS). The group is meeting this week at Mandalay Bay Resort and Casino in Las Vegas, where the Payment Card Industry Security Standards Council (PCI SSC) is holding [...]
Spurs aiming for the goal of PCI card security compliance – 15 Sep 2009 – Computing
Premier League football club Tottenham Hotspur has a critical short-term goal to achieve – other than trying to remain near the top of the table.
The club is racing against an October deadline to roll out compliance with the payment card industry’s data security standard (PCI DSS).
Spurs processes 700,000 credit card transactions a year, and a [...]
Research Finds PCI DSS Awareness High Among Small Retailers
Though small retailers are aware of Payment Card Industry Data Security Standards (PCI DSS), they feel frustrated and bewildered with the complex requirements, according to a survey of small retailers by ControlScan, the National Retail Federation, and the PCI Knowledge Base. The research was released in conjunction with NRFtech, NRF’s IT Leadership Summit, in La [...]
Skimming Prevention: Best Practices for Merchants #PCI
According to the “Skimming Prevention: Best Practices for Merchants” guidelines expected to be issued by the Payment Card Industry Security Standards Council Tuesday, even tiny cameras hidden in ceilings and charity boxes left on retail counters are being used to steal detailed customer payment data, including PIN numbers.
via How to minimize the risk of illicit [...]
Small businesses largely not PCI compliant – SC Magazine US
A recent survey has found that a significant portion of small businesses are not compliant with Payment Card Industry Data Security Standard (PCI DSS).
via Small businesses largely not PCI compliant – SC Magazine US.
#PCI Compliance Only the Start of Security
When the Network Solutions breach was reported last week, the usual buzz about whether or not the company was PCI-compliant began almost immediately.
Similar talk surrounded the situations with Heartland Payment Systems, Hannaford Bros. and just about every other data breach that has happened since the Payment Card Industry Data Security Standard (PCI DSS) was first [...]
PCI breaches shed light on cloud securityi – Network World
Credit card numbers compromised in an attack against Web hosting provider Network Solutions exposes one of the security problems faced by cloud computing.The company says its infrastructure complied with payment card industry PCI standards when the data was possibly stolen via software installed on is servers.
via PCI breaches shed light on cloud securityi – [...]
PCI – many retailers upset about the standard #PCI
For a couple of months spanning the first and second quarters of this year, Integrated Solutions For Retailers surveyed its subscribers — hundreds of retailers from many segments, ranging the gamut from small and regional chains to tier-one enterprises — on their perceptions of the PCI DSS (Payment Card Industry Data Security Standard). The survey [...]
