PCI Data Security Standard
- September 05, 2014
News roundup: The recent Goodwill security breach has been blamed on a third-party service provider, highlighting the need for due diligence. Plus: Mobile device theft; Android app vulnerabilities and a 12-year-long cyber-espionage network.
- August 28, 2014
The new information supplement offers advice on how to address obstacles in maintaining year-round PCI compliance, even though PCI experts say the challenge is only getting harder.
- August 12, 2014
Discussing the state of PCI DSS compliance, Gartner's Avivah Litan says the industry still struggles with PCI auditors who both identify PCI problems and sell remediation services to fix them, causing a conflict of interest.
- August 07, 2014
The PCI Security Standards Council's new information supplement helps enterprises implement a security assurance program to ensure their third-party service providers meet PCI DSS requirements.
- July 21, 2014
Hailed by card brands as the cure to payment card fraud, Chip and PIN security technology will take years to deploy and has already proven vulnerable.
- June 05, 2014
The Security Standards Council is soliciting topics for next year's PCI DSS special interest groups, despite delays that have held back two 2013 PCI SIGs.
- May 13, 2014
During National Small Business Week, the PCI SSC will offer a free webcast Thursday to draw attention to the risk of small business data breaches.
- April 01, 2014
It remains unclear whether Trustwave could be held liable for Target's massive 2013 data breach in future litigation.
- March 12, 2014
PCI compliance may be nearly impossible after the April 2014 Windows XP end-of-life date if merchants don't address vulnerable XP-based POS systems.
- February 10, 2014
In its 2014 PCI Compliance Report, Verizon says that during a three-year period, fewer than one out of every nine companies passed all 12 requirements.