The PCI DSS Toolkit Overview Does your organization process, transmit or store payment card data? If your answer is yes, then you need to comply with the PCI DSS (Payment Card Industry Data Security Standard). The payment Standard helps to ensure the security of transactions and protect your business from potential data breaches and fines. […]

Ata Hakcil led the team of white hat hackers from WizCase in identifying a major data leak on online trading broker FBS’ websites. The data from FBS.com and FBS.eu comprised millions of confidential records including names, passwords, email addresses, passport numbers, national IDs, credit cards, financial transactions and more. Were such detailed personally identifiable information (PII) to […]

Names, credit card data, addresses, and information on transactions as recent as yesterday are being sold online. As of Wednesday, sellers in two dark web stores were offering information from what appeared to be 278,531 accounts, although some of those may be duplicates or not genuine. As of April, Instacart had “millions of customers across […]

By Nick Calver @ITG Drafting detailed data protection policies and documentation is vital for improving security for your customers, stakeholders and brand because it shows your understanding and commitment to the PCI DSS (Payment Card Industry Data Security Standard). From policy, to procedure, to configuration standard, a significant proportion of PCI DSS compliance begins with documentation. […]

  Council Issues Guidelines to Address Security Shortcomings In its just-released guidelines for ongoing risk assessments, the Payment Card Industry Security Standards Council notes three specific areas for improvement. The guidelines, which are intended for any organization that handles credit or debit card data, offer specific recommendations for risk assessments, such as how to create […]

  Organizations that need to comply with PCI-DSS need to create their own risk assessment methodology that works for their specific business needs, according to a new report by the Payment Card Industry Security Standards Council (PCI SSC). PCI Risk Assessment Special Interest Group says When developing their own risk assessment methodology, organizations may consider adapting an industry-standard methodology […]

By Azie Amini Protection of credit card/ATM card transactions and the latest trends in banking, credit card or internet fraud. • As we go towards the end of the year, one by one report each credit card missing and get a new one with a new account number (make sure you ask for a new […]

Some basic advice has been issued by Apacs, and includes: * Don’t let your cards or your card details out of your sight when making a transaction * Do not keep your passwords, login details or Pins written down * Do not disclose Pins, login details or passwords in response to unsolicited emails * Only […]

Where can we find information about PCI DSS compliance that is focused on those of us who are “Mom & Pop” shops? Since most small organizations fall into the sell-assessment category, a great resource is the Security Standards Council SAQ (Self-Assessment Questionnaire) section. Specifically these documents: SAQ main page PCI DSS SAQ instructions and guidelines […]

RFID Security Thieves now have the capabilities to steal your credit card information without laying a hand on your wallet. It’s new technology being used in credit and debit cards, and it’s already leaving nearly 140 million people at-risk for electronic pickpocketing. It all centers around radio frequency identification technology, or RFID. You’ll find it […]

Image by purpleslog via Flickr PCI SSC has pre-announced the summary of changes for expected PCI 2.0 in October 2010. Based on summary report most of the changes are clarification or guidance. According to Bob Russo, general manager of the PCI Security Standards Council. “This version is 2.0, and the connotation is that there will be […]

There is a myth out there that we are a small company and PCI DSS does not apply to us. It does not matter how small or big your business is you must comply to PCI DSS if you process, store and transmit credit card data. Don’t store the credit card data, if you don’t […]

Image via Wikipedia By Tom Murphy INDIANAPOLIS – WellPoint Inc. has notified 470,000 individual insurance customers that medical records, credit card numbers and other sensitive information may have been exposed in the latest security breach of the health insurer’s records. The Indianapolis company said the problem stemmed from an online program customers can use to […]

There is a big misconception out there that PCI DSS compliance does not apply to us, because we are relatively a small company The fact is PCI DSS must be met by all organizations that transmit, process or store payment card data. Also business owner want to know what is ROI on PCI compliance. It […]

Image by Getty Images via Daylife PCI DSS v1.2: A Practical Guide to Implementation By David F. Carr @ Forbes The easiest way for small businesses to address the information security requirements imposed by credit card companies is the wrong way. I’m talking about lying and praying. In 2004 the major credit card companies got […]

City woman victim of skimming; Credit card number used for purchases at store in Florida.(City): An article from: Winnipeg Free Press By Angela Moscaritolo – SCMagazineUS.com U.S. banks are grappling with a recent increase in skimming attacks, which are being carried out by Eastern European gangs aiming to steal consumer bank account numbers and PINs, […]

Image via Wikipedia DesMoinesRegister.com Nearly $9,000 was stolen from a Des Moines family’s credit union account after their home computer was hacked. The theft occurred at the end of March. “My husband was on the computer and he’d just paid a credit card bill,” Nickie Siracusano said. “A pop-up that said PC Shields came up […]

Image via Wikipedia By Alan J. Liddle WASHINGTON (April 1, 2010) Albert Gonzalez, the mastermind of payment card data thefts from Boston Market and Dave & Buster’s and a participant in the hack of a credit transaction processor serving thousands of restaurants, has been sentenced to two 20-year prison terms, the U.S. Justice Department said. […]

by Amy Fontinelle @ investopedia.com Debit card fraud occurs when a criminal gains access to your debit card number and, in some cases, PIN, to make unauthorized purchases and/or withdraw cash from your account. There are many different methods of obtaining your information, from unscrupulous employees to hackers gaining access to your data from a […]