-
Defending PCI: ‘Don’t Blame the Qsa’s’
Posted on September 30th, 2009 No commentsInterview with Bob Russo, GM of PCI Security Standards CouncilSince the announcement of the Heartland data breach in January, the merits of the Payment Card Industry Data Security Standard (PCI DSS) have been questioned, and Bob Russo has led the defense. Russo is general manager of the PCI Security Standards Council, the group responsible for the development, management, education and awareness of the PCI Security Standards. In an exclusive interview conducted at the council’s recent community meeting in Las Vegas, Russo discusses: Why end-to-end encryption is no security panacea; The merits of tokenization, Chip and PIN and other solutions; His response to breached entities that say they were PCI compliant.
See the original post:
Defending PCI: ‘Don’t Blame the Qsa’s’ -
Recycling project causes breach when social insurance numbers are redistributed in notebooks
Posted on September 29th, 2009 No commentsMemorial University of Newfoundland data loss incident circa 2009-09-29
Read more here:
Recycling project causes breach when social insurance numbers are redistributed in notebooks -
Data Breach Trends: How to Avoid a Hack
Posted on September 29th, 2009 No commentsChris Novak, Verizon Business: Monitoring, Incident Response are KeyHeartland Payment Systems, Radisson Hotels and Network Solutions have made the big headlines so far this year.
Visit link:
Data Breach Trends: How to Avoid a Hack -
How Safe Is Social Media? (Opinion)
Posted on September 29th, 2009 No commentsDon’t make ‘bear shaving’ your security policy for Web 2.0.
Continued here:
How Safe Is Social Media? (Opinion) -
Ponemon survey shows firms struggling on payment data security
Posted on September 23rd, 2009 No comments71% of companies are failing to treat the Payment Card Industry Data Security Standard (PCI-DSS) as a strategic initiative, even though 79% of them have experienced a data breach. Researchers found that 55% of respondent firms do not secure social security numbers, driver’s licence n…
Originally posted here:
Ponemon survey shows firms struggling on payment data security -
Network Solutions Breach Revives PCI Debate
Posted on August 10th, 2009 No commentsIf Firms are PCI Compliant, Why are They Getting Breached?The recent data breach at Internet domain administrator and host Network Solutions compromised more than 573,000 credit and debit cardholders and begs the question: What more can be done to secure such systems? The incident also raises new questions about the Payment Card Industry Data Security Standard (PCI).
Original post:
Network Solutions Breach Revives PCI Debate -
Heartland Reports Loss
Posted on August 6th, 2009 No commentsBreach-Related Expenses Cost Processor $2.6 MillionHeartland Payment Systems Inc. (HPY), the nation’s sixth-largest payment processor, reports a loss for the second quarter because of a $19.4 million charge to settle claims and legal fees related to the security breach revealed earlier in January
See original here:
Heartland Reports Loss -
TJX Settlement: Is This Really The Message We Want Sent?
Posted on June 24th, 2009 No commentsWhen a group of 41 U.S. states announced a settlement with TJX this week—a supposed punishment for the retail chain, in the words of one state attorney general, for treating sensitive payment card information “like trash”—it was billed in some circles as a painful lesson for retailers who treat security laxly.
Here is the original post:
TJX Settlement: Is This Really The Message We Want Sent? -
Unauthorized access by a former employee exposes names, addresses and Social Security numbers of past and present employees
Posted on June 23rd, 2009 No commentsBeam Global Spirits & Wine Inc data loss incident circa 2009-06-15
-
Nevada Law Incorporates PCI and Provides a Liability Safe Harbor
Posted on June 22nd, 2009 No commentsNevada appears to be the second State to incorporate the Payment Card Industry Data Security Standard (PCI) into its personal information security law.
See the article here:
Nevada Law Incorporates PCI and Provides a Liability Safe Harbor
Recent Comments