Payment | MicroShred, Inc. 1.866.467.4733

PCI: Is Your Institution Compliant?

Posted on November 11th, 2009 admin No comments

Recent Assessments Find Flawed Security PracticesSince the Heartland data breach was announced in January, there’s been no shortage of discussion about the Payment Card Industry Data Security Standard(PCI DSS) and its requirements of merchants and payments processors. But what about financial institutions? Banks and credit unions store large amounts of cardholder data, but often show little awareness of PCI requirements, say security experts, including the Qualified Security Assessors (QSA) who test for PCI compliance.

Read more:
PCI: Is Your Institution Compliant?

Identity Theft assessments, cardholder-data, flawed-security, industry, industry-data, large-amounts, payment, payment-card, qualified, security-
Lawsuit: Heartland Knew Data Security Standard was ‘Insufficient’

Posted on October 5th, 2009 admin No comments

Complaint Says CEO Described PCI as ‘Lowest Common Denominator’ of ProtectionMonths before announcing the Heartland Payment Systems (HPY) data breach, company CEO Robert Carr told industry analysts that the Payment Card Industry Data Security Standard (PCI DSS) was an insufficient protective measure. This is the contention of a new master complaint filed in the class action suit against Heartland, which in January announced a data breach that is now estimated to be the largest known hack, involving 130 million credit and debt card accounts.

Originally posted here:
Lawsuit: Heartland Knew Data Security Standard was ‘Insufficient’

Identity Theft complaint-filed, industry, issued-pursuant, largest, leaked-document, lowest-common, payment, personal, personal-health, security-, social, social-security
Defending PCI: ‘Don’t Blame the Qsa’s’

Posted on September 30th, 2009 admin No comments

Interview with Bob Russo, GM of PCI Security Standards CouncilSince the announcement of the Heartland data breach in January, the merits of the Payment Card Industry Data Security Standard (PCI DSS) have been questioned, and Bob Russo has led the defense. Russo is general manager of the PCI Security Standards Council, the group responsible for the development, management, education and awareness of the PCI Security Standards. In an exclusive interview conducted at the council’s recent community meeting in Las Vegas, Russo discusses: Why end-to-end encryption is no security panacea; The merits of tokenization, Chip and PIN and other solutions; His response to breached entities that say they were PCI compliant.

See the original post:
Defending PCI: ‘Don’t Blame the Qsa’s’

Identity Theft breach, general-manager, how-should, industry, payment, payment-card, prevent-privacy, russo
Recycling project causes breach when social insurance numbers are redistributed in notebooks

Posted on September 29th, 2009 admin No comments

Memorial University of Newfoundland data loss incident circa 2009-09-29

Read more here:
Recycling project causes breach when social insurance numbers are redistributed in notebooks

Identity Theft chris, chris-novak, data, Identity Theft, incident, incident-circa, investigative, network, payment, university, verizon-business
Data Breach Trends: How to Avoid a Hack

Posted on September 29th, 2009 admin No comments

Chris Novak, Verizon Business: Monitoring, Incident Response are KeyHeartland Payment Systems, Radisson Hotels and Network Solutions have made the big headlines so far this year.

Visit link:
Data Breach Trends: How to Avoid a Hack

Identity Theft chris, chris-novak, data, Identity Theft, incident, investigative, made-the-big, monitoring, network, payment, radisson, radisson-hotels, verizon, verizon-business, year
How Safe Is Social Media? (Opinion)

Posted on September 29th, 2009 admin No comments

Don’t make ‘bear shaving’ your security policy for Web 2.0.

Continued here:
How Safe Is Social Media? (Opinion)

Identity Theft bear-shaving, data, Identity Theft, incident, incident-circa, investigative, network, payment, security-, verizon-business, your-security
Ponemon survey shows firms struggling on payment data security

Posted on September 23rd, 2009 admin No comments

71% of companies are failing to treat the Payment Card Industry Data Security Standard (PCI-DSS) as a strategic initiative, even though 79% of them have experienced a data breach. Researchers found that 55% of respondent firms do not secure social security numbers, driver’s licence n…

Originally posted here:
Ponemon survey shows firms struggling on payment data security

Identity Theft financial-services, ID Theft, Identity Theft, payment, payment-card, security-, social-security, strategic-initiative, take-precautions, treat-the-payment, warning
Network Solutions Breach Revives PCI Debate

Posted on August 10th, 2009 admin No comments

If Firms are PCI Compliant, Why are They Getting Breached?The recent data breach at Internet domain administrator and host Network Solutions compromised more than 573,000 credit and debit cardholders and begs the question: What more can be done to secure such systems? The incident also raises new questions about the Payment Card Industry Data Security Standard (PCI).

Original post:
Network Solutions Breach Revives PCI Debate

Identity Theft compliant, ID Theft, Identity Theft, industry, industry-data, internet, network, payment, question, raises-new, recent-data, security-, the-question
Heartland Reports Loss

Posted on August 6th, 2009 admin No comments

Breach-Related Expenses Cost Processor $2.6 MillionHeartland Payment Systems Inc. (HPY), the nation’s sixth-largest payment processor, reports a loss for the second quarter because of a $19.4 million charge to settle claims and legal fees related to the security breach revealed earlier in January

See original here:
Heartland Reports Loss

Identity Theft breach-revealed, expenses, fees-related, heartland-payment, ID Theft, nation, payment, processor, quarter-because, security-, the-nation, the-second, the-security
TJX Settlement: Is This Really The Message We Want Sent?

Posted on June 24th, 2009 admin No comments

When a group of 41 U.S. states announced a settlement with TJX this week—a supposed punishment for the retail chain, in the words of one state attorney general, for treating sensitive payment card information “like trash”—it was billed in some circles as a painful lesson for retailers who treat security laxly.

Here is the original post:
TJX Settlement: Is This Really The Message We Want Sent?

Identity Theft billion-owner, dollars, ID Theft, Identity Theft, million-sounds, opposite, payment, retail, settlement, states, words
« Older Entries

Confidential Shredding

PCI: Is Your Institution Compliant?

Lawsuit: Heartland Knew Data Security Standard was ‘Insufficient’

Defending PCI: ‘Don’t Blame the Qsa’s’

Recycling project causes breach when social insurance numbers are redistributed in notebooks

Data Breach Trends: How to Avoid a Hack

How Safe Is Social Media? (Opinion)

Ponemon survey shows firms struggling on payment data security

Network Solutions Breach Revives PCI Debate

Heartland Reports Loss

TJX Settlement: Is This Really The Message We Want Sent?

Search

Recent Posts

Archives

Categories

Blogroll