April 01, 2014
It remains unclear whether Trustwave could be held liable for Target's massive 2013 data breach in future litigation.
March 12, 2014
PCI compliance may be nearly impossible after the April 2014 Windows XP end-of-life date if merchants don't address vulnerable XP-based POS systems.
February 10, 2014
In its 2014 PCI Compliance Report, Verizon says that during a three-year period, fewer than one out of every nine companies passed all 12 requirements.
January 16, 2014
With news of more retail breaches imminent, experts say point-of-sale security is just one of many payment-processing infrastructure problems.
November 07, 2013
Version 3.0 of the Payment Card Industry Data Security Standard has few surprises, but a host of new requirements and challenges for merchants.
October 31, 2013
A veteran QSA believes PCI DSS 3.0 will help both QSAs and enterprises, but says further clarifications are needed to avoid PCI assessment disputes.
October 30, 2013
The PCI SSC says hardware-based point-to-point encryption (P2PE) will better secure merchant card data and make PCI DSS compliance easier.
September 27, 2013
PCI Community Meeting attendees this week discussed POS security and EMV; officials say feedback will influence more changes in the final PCI DSS 3.0.
September 13, 2013
On the heels of Echopass achieving PCI Level 1 certification, CISO Dennis Empey offers PCI guidance for other cloud providers navigating the process.
August 15, 2013
The proposed PCI DSS 3.0 standard would emphasize in-house vulnerability assessments, add password flexibility and highlight provider compliance.