By Nick Calver @ITG Drafting detailed data protection policies and documentation is vital for improving security for your customers, stakeholders and brand because it shows your understanding and commitment to the PCI DSS (Payment Card Industry Data Security Standard). From policy, to procedure, to configuration standard, a significant proportion of PCI DSS compliance begins with documentation. […]
Council Issues Guidelines to Address Security Shortcomings In its just-released guidelines for ongoing risk assessments, the Payment Card Industry Security Standards Council notes three specific areas for improvement. The guidelines, which are intended for any organization that handles credit or debit card data, offer specific recommendations for risk assessments, such as how to create […]
Organizations that need to comply with PCI-DSS need to create their own risk assessment methodology that works for their specific business needs, according to a new report by the Payment Card Industry Security Standards Council (PCI SSC). PCI Risk Assessment Special Interest Group says When developing their own risk assessment methodology, organizations may consider adapting an industry-standard methodology […]
By Azie Amini Protection of credit card/ATM card transactions and the latest trends in banking, credit card or internet fraud. • As we go towards the end of the year, one by one report each credit card missing and get a new one with a new account number (make sure you ask for a new […]
Some basic advice has been issued by Apacs, and includes: * Don’t let your cards or your card details out of your sight when making a transaction * Do not keep your passwords, login details or Pins written down * Do not disclose Pins, login details or passwords in response to unsolicited emails * Only […]
Where can we find information about PCI DSS compliance that is focused on those of us who are “Mom & Pop” shops? Since most small organizations fall into the sell-assessment category, a great resource is the Security Standards Council SAQ (Self-Assessment Questionnaire) section. Specifically these documents: SAQ main page PCI DSS SAQ instructions and guidelines […]
RFID Security Thieves now have the capabilities to steal your credit card information without laying a hand on your wallet. It’s new technology being used in credit and debit cards, and it’s already leaving nearly 140 million people at-risk for electronic pickpocketing. It all centers around radio frequency identification technology, or RFID. You’ll find it […]
Image by purpleslog via Flickr PCI SSC has pre-announced the summary of changes for expected PCI 2.0 in October 2010. Based on summary report most of the changes are clarification or guidance. According to Bob Russo, general manager of the PCI Security Standards Council. “This version is 2.0, and the connotation is that there will be […]
There is a myth out there that we are a small company and PCI DSS does not apply to us. It does not matter how small or big your business is you must comply to PCI DSS if you process, store and transmit credit card data. Don’t store the credit card data, if you don’t […]
Image via Wikipedia By Tom Murphy INDIANAPOLIS – WellPoint Inc. has notified 470,000 individual insurance customers that medical records, credit card numbers and other sensitive information may have been exposed in the latest security breach of the health insurer’s records. The Indianapolis company said the problem stemmed from an online program customers can use to […]
There is a big misconception out there that PCI DSS compliance does not apply to us, because we are relatively a small company The fact is PCI DSS must be met by all organizations that transmit, process or store payment card data. Also business owner want to know what is ROI on PCI compliance. It […]
Image by Getty Images via Daylife PCI DSS v1.2: A Practical Guide to Implementation By David F. Carr @ Forbes The easiest way for small businesses to address the information security requirements imposed by credit card companies is the wrong way. I’m talking about lying and praying. In 2004 the major credit card companies got […]
City woman victim of skimming; Credit card number used for purchases at store in Florida.(City): An article from: Winnipeg Free Press By Angela Moscaritolo – SCMagazineUS.com U.S. banks are grappling with a recent increase in skimming attacks, which are being carried out by Eastern European gangs aiming to steal consumer bank account numbers and PINs, […]
Image via Wikipedia DesMoinesRegister.com Nearly $9,000 was stolen from a Des Moines family’s credit union account after their home computer was hacked. The theft occurred at the end of March. “My husband was on the computer and he’d just paid a credit card bill,” Nickie Siracusano said. “A pop-up that said PC Shields came up […]
Image via Wikipedia By Alan J. Liddle WASHINGTON (April 1, 2010) Albert Gonzalez, the mastermind of payment card data thefts from Boston Market and Dave & Buster’s and a participant in the hack of a credit transaction processor serving thousands of restaurants, has been sentenced to two 20-year prison terms, the U.S. Justice Department said. […]
by Amy Fontinelle @ investopedia.com Debit card fraud occurs when a criminal gains access to your debit card number and, in some cases, PIN, to make unauthorized purchases and/or withdraw cash from your account. There are many different methods of obtaining your information, from unscrupulous employees to hackers gaining access to your data from a […]
Image by purpleslog via Flickr There is a big misconception out there that PCI DSS compliance does not apply to us, we are relatively small company The fact is PCI DSS must be met by all organizations that transmit, process or store payment card data. Also business owner want to know what is ROI on […]
Image via Wikipedia Overseas gangs have cracked the code of ATM anti-skimming devices in Australia just two months after their roll-out. ATM Security Breach News Video Overseas gang has cracked the code of ATM using skimming devices in Australia, where bank customers are defenseless against organized crime unless they check ATM themselves against any sign […]
Image by purpleslog via FlickrIn 2010 there will be two important compliance laws introduced which will affect the majority of North American organizations and many global organization too. 45 US States followed California when they introduced “SB1386“, the Security Breach Information Act, which has specific and restrictive privacy breach reporting requirements. From the 1st January […]
Here we have another unnecessary credit card data breach in a small organization which resulted in a loss of customers data demonstrating poor baseline security of small organization in this case a restaurant. Small organizations are not ready for PCI Compliance. Checkout why PCI Compliance is essential and why small merchants have to comply. Review […]
