Posted on October 29th, 2010 No comments
While the research proves that e-commerce sales will continue to gain popularity as technology advances, there continues to be a correlation with the increased emergence of aggressive cyberthieves who create techniques to breach even the most-protected systems — and use that card data to purchase unauthorized goods and services.
Read this article:
Clearing Up Some Common E-Commerce Security Misconceptions
As the lawsuits involving Heartland’s massive data breach move through the court system, an unusual claim was inserted into a court filing. The Sept
Officially, Visa and other card brands “discourage” retailers from using card data for non-transaction functions, such as CRM or other customer identification programs. But many retailers continue to do the forbidden practice and to do so openly
Visa’s just-announced best practices are designed to provide guidance and give tacit endorsement to existing end-to-end encryption and, to some extent, tokenization. Merchants are likely to see it as “something else to do” and as further evidence that the card brands will continue to go their own way relative to data security, despite the PCI DSS industry standards.But PCI Columnist David Taylor sees something else interesting here. “For the last 4-5 years, companies have been told that achieving PCI compliance is much easier if they segment their network.
Does Visa’s Encryption Statement Offer A “Tacit Endorsement”?