Archive for the ‘pci dss’ Category

PCI DSS policies address the weakest link – people

By Nick Calver @ITG Drafting detailed data protection policies and documentation is vital for improving security for your customers, stakeholders and brand because it shows your understanding and commitment to the PCI DSS (Payment Card Industry Data Security Standard). From policy, to procedure, to configuration standard, a significant proportion of PCI DSS compliance begins with documentation. […]

Leave a Comment

PCI Risk Assessment Tips Offered

  Council Issues Guidelines to Address Security Shortcomings In its just-released guidelines for ongoing risk assessments, the Payment Card Industry Security Standards Council notes three specific areas for improvement. The guidelines, which are intended for any organization that handles credit or debit card data, offer specific recommendations for risk assessments, such as how to create […]

Comments (1)

PCI view of Risk Assessment

  Organizations that need to comply with PCI-DSS need to create their own risk assessment methodology that works for their specific business needs, according to a new report by the Payment Card Industry Security Standards Council (PCI SSC). PCI Risk Assessment Special Interest Group says When developing their own risk assessment methodology, organizations may consider adapting an industry-standard methodology […]

Leave a Comment

Protection of credit card and ATM/debit card transactions

By Azie Amini Protection of credit card/ATM card transactions and the latest trends in banking, credit card or internet fraud. • As we go towards the end of the year, one by one report each credit card missing and get a new one with a new account number (make sure you ask for a new […]

Comments (3)

How to protect ourselves from Payment Fraud

Some basic advice has been issued by Apacs, and includes: * Don’t let your cards or your card details out of your sight when making a transaction * Do not keep your passwords, login details or Pins written down * Do not disclose Pins, login details or passwords in response to unsolicited emails * Only […]

Comments (1)

PCI DSS questions answered

Where can we find information about PCI DSS compliance that is focused on those of us who are “Mom & Pop” shops? Since most small organizations fall into the sell-assessment category, a great resource is the Security Standards Council SAQ (Self-Assessment Questionnaire) section. Specifically these documents: SAQ main page PCI DSS SAQ instructions and guidelines […]

Comments (1)

Electronic Pick Pocketing with RFID

RFID Security Thieves now have the capabilities to steal your credit card information without laying a hand on your wallet. It’s new technology being used in credit and debit cards, and it’s already leaving nearly 140 million people at-risk for electronic pickpocketing. It all centers around radio frequency identification technology, or RFID. You’ll find it […]

Leave a Comment

PCI SSC releases highlights for 2.0 changes

Image by purpleslog via Flickr PCI SSC has pre-announced the summary of changes for expected PCI 2.0 in October 2010. Based on summary report most of the changes are clarification or guidance. According to Bob Russo, general manager of the PCI Security Standards Council. “This version is 2.0, and the connotation is that there will be […]

Comments (2)

Why Your Business may need to be PCI-DSS Compliant?

There is a myth out there that we are a small company and PCI DSS does not apply to us. It does not matter how small or big your business is you must comply to PCI DSS if you process, store and transmit credit card data. Don’t store the credit card data, if you don’t […]

Comments (1)

Security glitch exposes WellPoint data again

Image via Wikipedia By Tom Murphy INDIANAPOLIS – WellPoint Inc. has notified 470,000 individual insurance customers that medical records, credit card numbers and other sensitive information may have been exposed in the latest security breach of the health insurer’s records. The Indianapolis company said the problem stemmed from an online program customers can use to […]

Leave a Comment

Fallout from a PCI breach for merchants and consumers

There is a big misconception out there that PCI DSS compliance does not apply to us, because we are relatively a small company The fact is PCI DSS must be met by all organizations that transmit, process or store payment card data. Also business owner want to know what is ROI on PCI compliance. It […]

Leave a Comment

Taking Credit Card Security Seriously

Image by Getty Images via Daylife PCI DSS v1.2: A Practical Guide to Implementation By David F. Carr @ Forbes The easiest way for small businesses to address the information security requirements imposed by credit card companies is the wrong way. I’m talking about lying and praying. In 2004 the major credit card companies got […]

Comments (11)

U.S. businesses face skimming fraud increase

City woman victim of skimming; Credit card number used for purchases at store in Florida.(City): An article from: Winnipeg Free Press By Angela Moscaritolo – SCMagazineUS.com U.S. banks are grappling with a recent increase in skimming attacks, which are being carried out by Eastern European gangs aiming to steal consumer bank account numbers and PINs, […]

Comments (1)

A home computer credit card scam and family loses 9k

Image via Wikipedia DesMoinesRegister.com Nearly $9,000 was stolen from a Des Moines family’s credit union account after their home computer was hacked. The theft occurred at the end of March. “My husband was on the computer and he’d just paid a credit card bill,” Nickie Siracusano said. “A pop-up that said PC Shields came up […]

Comments (15)

Man sentenced for hacking restaurant card data

Image via Wikipedia By Alan J. Liddle WASHINGTON (April 1, 2010) Albert Gonzalez, the mastermind of payment card data thefts from Boston Market and Dave & Buster’s and a participant in the hack of a credit transaction processor serving thousands of restaurants, has been sentenced to two 20-year prison terms, the U.S. Justice Department said. […]

Comments (3)