PCI DSS

PCI Security Standards Council publishes PCI DSS 3.2.1

May 21, 2018

PCI DSS version 3.2.1 replaces version 3.2 to account for effective dates and SSL/early TLS migration deadlines that have passed. No new requirements are added in PCI DSS …

Small merchants are not effectively engaging with PCI programs

April 27, 2018

Smaller merchants are systematically failing to engage with PCI compliance programs, according to a new acquirer survey from Sysnet Global Solutions. The survey revealed that …

PCI DSS 3.2 will unveil compliance cramming culture

January 29, 2018

February 1, 2018 marks the deadline for businesses to adopt the new industry standard, PCI DSS 3.2, aimed at reducing and better responding to cyber attacks resulting in …

Four misconceptions around compensating controls

January 5, 2018

As the New Year celebrations come to a close, the deadline to become compliant with the EU’s new consumer protection regulation GDPR is creeping closer. With this new …

Payment security: What are the biggest challenges?

August 31, 2017

With cybercrime on the increase, payment card security is increasingly a focus for companies and consumers alike. The Payment Card Industry Data Security Standard (PCI DSS) is …

Proposed cyber security requirements for New York State seem to be more of the same

October 3, 2016

This month, New York State Governor Andrew Cuomo announced proposed regulation that requires banks, insurance companies, and other financial services institutions regulated by …

Analyze your data: Where is it and who has it?

July 1, 2016

It is becoming widely recognized that “unknown” data leakage of PCI data, and more broadly other Personally Identifiable Information, within enterprises is the highest value …

PCI DSS 3.2 is out: What’s new?

April 28, 2016

The Payment Card Industry Security Standards Council has published the latest version of PCI DSS, the information security standard for organizations that handle customer …