Banks can install only those swipe machines including the double swipe registers at supermarkets which are certified for PCI-DSS Payment Card Industry-Data Security Standards and PA-DSS Payment Applications -Data Security Standards. Merchants and aggregators, whose card acceptance machines are currently operational on Internet Protocol-based solutions, have to mandatorily go through PCI-DSS and PA-DSS certification.
The Google Wallet app now stores your payment cards on highly secure Google servers, instead of in the secure storage area on your phone.
Bank of America Corp. (>> Bank of America Corp) is throwing its muscle behind a credit-card technology aimed at cutting down on hassles U.S. cardholders may encounter when trying to make purchases while traveling abroad.
The Charlotte, N.C., bank said Monday it is including what are known as EMV chips in many of its consumer credit cards targeted at frequent travelers and high-net-worth customers.
Hotel chain slammed for poor information security practices, leading to attackers obtaining 600,000 credit card numbers and committing millions of dollars in fraud.
Channel partners honing their compliance skills will soon be able to add one more to their portfolio with the launch of a new Payment Card Industry Security Standards Council certification program specifically targeting integrators and resellers.
The latest PCI compliance stats—out this week—show trivial changes from the prior report, with Level 2 and Level 3 retailers slightly increasing compliance. Level 2 went from 91 percent at the end of December 2011 to 92 percent as of March 31, 2012, and Level 3 also increased by 1 percent, from 58 percent to 59 percent. The largest chains, the Level 1s (processing more than 6 million Visa transactions annually), stayed exactly the same, at 98 percent.
pcitube – PCI DSS Videos
PCI Tube attempts to collect quality videos for PCI DSS at one location
MasterCard and Visa are warning banks about a possible security breach at a U.S.-based processor that could affect millions of credit-card holders
The FTC alleged that after the personalized offers feature was enabled, extensive information was collected from the user and transmitted to Upromise, including the names of all websites visited, all links clicked by the user and information that users entered into certain web pages, such as usernames, passwords, search terms, credit card information, expiration dates, security codes and social security numbers. The FTC alleged that there was no way a user would be able to detect the extent of the data being collected by the Upromise software without special software and technical expertise
A study published today by merchant data security leader SecurityMetrics shows 71 percent of merchants who entered the study were found to store unencrypted payment card data in 2011, which is an increase of 8 percent since 2010.