Small merchants are not much more aware of—let alone compliant with—the Payment Card Industry data-security standard (PCI) than they were a year ago, according to a study released this week. Some 53% of small merchants are now at least aware of PCI, a small increase from the 47% a similar survey found in 2010. “Awareness [...]
Tag Archives: PCI Compliance
Tue 11/08/2011 - 04:28
Tue 06/28/2011 - 03:57
The PCI Security Standards Council on Friday released its first guidelines on mobile-acceptance applications since announcing in November that it had stopped reviewing such products. The Wakefield, Mass.-based Council, which manages the Payment Card Industry data-security standard (PCI), also said it hopes to start forming a broad group of mobile-payments experts next month to help [...]
Sat 06/18/2011 - 11:01
The PCI Security Standards Council on Tuesday released guidelines on how merchants, processors, card issuers, and tech companies should securely handle payment card data in light of the increasing “virtualization” of systems that transmit and process such data. Meanwhile, the Council is still grinding away on guidelines for mobile-payment security that it had hoped to [...]
Tue 04/27/2010 - 12:57
Cros-posted from Infosec Island Contributed By: Mike Meikle As a consultant, you get to view the grim expanse of industry regulation more than most. Â Sarbanes-Oxley (SOX), Health Insurance Portability and Accountability Act (HIPAA), Federal Information Security Management Act (FISMA) and of course the topic of this article, Payment Card Industry Data Security Standard (PCI DSS). [...]
Mon 04/19/2010 - 09:39
Cross Posted from Digital Transactions (April 15, 2010) It has started talking to point-of-sale terminal and software firms about integrating that software with their systems. The idea is to create an out-of-the-box product that would equip small merchants to comply with the networks’ Payment Card Industry data-security standard (PCI). “We said, ‘Bring your development teams, [...]
Thu 02/18/2010 - 12:28
Digital Transactions February 11, 2010 Visa Inc.’s announcement this week that starting this summer it will no longer require signatures for transactions of $25 or less at most U.S. merchants heralds a policy that will result in faster and smoother transactions but could also undermine the payments industry’s move toward contactless technology. “The merchant proposition [...]
Sun 02/14/2010 - 11:50
Posted 02/08/2010 on PC Mag Blogs I was reminded today of a problem I noticed long ago; American Express’s policies for passwords for their customer logins require weak passwords. I quote: Your Password should:Â Contain 6 to 8 characters – at least one letter and one number (not case sensitive) Contain no spaces or special [...]
Thu 02/11/2010 - 01:35
As posted on Information-Security-Recources.com By Robert Siciliano, ID Theft Expert and Security Consultant to Intelius.com In the latter half of 2009, criminal hackers went from mass SQL injection campaigns to targeted attacks. SQL is abbreviation of Structured Query Language. Pronounced  â€Ess Que El†or â€Sequelâ€. The attackers shift in strategy focused on targeting high-profile websites, concluded Websense’s State [...]
Fri 01/29/2010 - 10:59
As posted by Veritape Blog The Payment Card Industry Security Standards Council (PCI SSC) has formally clarified that storing sensitive credit card data in digital call recordings is forbidden. In an update to their ‘frequently asked questions’ document on call recording, the PCI SSC has simplified its wording, making it clear that only analogue recordings [...]
Sun 01/24/2010 - 12:36
Digital Transactions – January 21, 2010 The growth of online commerce in recent years has given rise to a number of payments-related trade groups, not to mention the PCI Security Standards Council, the oversight body of the Payment Card Industry data-security standard. Now a new one has come onto the scene, one is dedicated to [...]
Mon 01/11/2010 - 03:16
Submitted by epayments on January 9, 2010 – 9:31pm PRINCETON, N.J. & SAN FRANCISCO – (AllPayNews) Heartland Payment Systems® (NYSE: HPY), one of the nation’s largest payments processors, and Visa Inc. (NYSE: V) today announced a settlement agreement under which issuers of Visa-branded credit and debit cards will have an opportunity to obtain a recovery [...]
Sun 01/10/2010 - 01:22
Regal Technologies has rolled out a new website. New and improved support section boasts one of the largest resources for payment processing. Disclosure: Regal Technologies is a leading payment processor and sponsor of Payment-Times. Be sure to check out www.regaltek.com Blog this! Bookmark on Delicious Digg this post Recommend on Facebook Share on FriendFeed Share on [...]
Fri 10/09/2009 - 07:30
Posted by Todd Langusch on October 9, 2009 at 11:35am in IT Security News Nevada amended Chapter 603A of NRS, Security of Personal Information Nevada requires businesses to comply with current version of PCI DSS. This new act goes into effect January 1, 2010 See the full requirement here: http://leg.state.nv.us/75th2009/Bills/SB/SB227_EN.pdf Don’t forget, Massachusetts 201 CMR [...]
