Retailers and caterers have just six months to replace old systems if they are to continue to use wireless card payment technology. The industry payment security body might revoke the right to process cards for companies that do not upgrade their technology.
The Payment Card Industry (PCI)'s Data Security Standard (DSS) is the set of technical requirements which must be met by retailers who want to process cards.
It was changed in 2008 to ban the use of Wired Equivalent Privacy (WEP) technology in the transmission of card details from mobile card terminals to the main part of a system.
via Companies have just months to replace old wireless payments systems | Pinsent Masons LLP.
Today, the PCI Security Standards Council (PCI SSC), a global, open industry standards body providing management of the Payment Card Industry Data Security Standard (PCI DSS), PIN Transaction Security (PTS) Security Requirements and the Payment Application Data Security Standard (PA-DSS), announced the launch of a new PCI SSC micro site, providing resources to secure payment card data in eight languages.
via PCI Security Standards Council Launches Global Website with New Resources in Eight Languages | SYS-CON INDIA.
Less than 50% of businesses with 20,000 or more payment transactions a year are compliant with the Payment Card Industry Data Security Standard, a survey found…
via PCI-Compliant Stores a Minority – American Banker Article.
A recent study conducted by PriceWaterhouseCoopers on behalf of the Payment Card Industry Security Standards Council shows that end to end encryption and tokenization are the top choices for companies seeking to employ new emerging technologies to protect payment card and other critical data. And both approaches have their public proponents, including Heartland Payment Systems (HPY) CEO Robert Carr, who’s been encryption’s most vocal supporter in the wake of his organization’s historic breach.
via Tokenization Vs. End to End Encryption: Experts Weigh in.
Months before announcing the Heartland Payment Systems (HPY) data breach, company CEO Robert Carr told industry analysts that the Payment Card Industry Data Security Standard (PCI DSS) was an insufficient protective measure.
This is a class action lawsuit brought by the FI Plaintiffs,
individually, and on behalf of similarly situated banks, credit unions and
other financial institutions that were injured as a result of a massive breach
in the computer systems (the “Data Breach”) at Defendant Heartland
Payment Systems, Inc. (“Heartland”).
HEARTLAND-FILING-9_2_09.pdf (application/pdf Object).
The PCI Virtualization Special Interest Group is trying to find consensus before proposing ways to add the technology to the Payment Card Industry Data Security Standards (PCI DSS). The group is meeting this week at Mandalay Bay Resort and Casino in Las Vegas, where the Payment Card Industry Security Standards Council (PCI SSC) is holding its North American Community meeting.
via PCI virtualization SIG closer to proposing changes to standard .
Premier League football club Tottenham Hotspur has a critical short-term goal to achieve – other than trying to remain near the top of the table.
The club is racing against an October deadline to roll out compliance with the payment card industry’s data security standard (PCI DSS).
Spurs processes 700,000 credit card transactions a year, and a planned new 58,000-seater stadium, up from 36,000 seats, is expected to increase the number of credit card transactions significantly.
via Spurs aiming for the goal of PCI card security compliance – 15 Sep 2009 – Computing.
Though small retailers are aware of Payment Card Industry Data Security Standards (PCI DSS), they feel frustrated and bewildered with the complex requirements, according to a survey of small retailers by ControlScan, the National Retail Federation, and the PCI Knowledge Base. The research was released in conjunction with NRFtech, NRF’s IT Leadership Summit, in La Jolla, CA.
via Research Finds PCI DSS Awareness High Among Small Retailers.
According to the “Skimming Prevention: Best Practices for Merchants” guidelines expected to be issued by the Payment Card Industry Security Standards Council Tuesday, even tiny cameras hidden in ceilings and charity boxes left on retail counters are being used to steal detailed customer payment data, including PIN numbers.
via How to minimize the risk of illicit credit card capturing – Network World.
A recent survey has found that a significant portion of small businesses are not compliant with Payment Card Industry Data Security Standard (PCI DSS).
via Small businesses largely not PCI compliant – SC Magazine US.