PCI - News, Features, and Slideshows

News

• Chat bot opens door to Ticketmaster payment card hack

  Ticketmaster breach could serve as a lesson in the risk involved in buying web tools.

  Liam Tung | 29 Jun | Read more

• 

  Message in a PCI bottle - preserving message queue integrity

  Final part in the series on achieving PCI compliance when dealing with message queues.

  Ben Rothke | 28 Jun | Read more

• 

  People are the key to security

  Laura Bell is the founder and lead consultant at SafeStack. With a background in software development, penetration testing and information security, Bell has made a career from challenging traditional fear based formal governance approaches. In her plenary session presentation at AusCERT 2015, Bell put the challenge out to change the way we approach human security risk. Her call is “Let's protect our people”.

  Anthony Caruana | 04 Jun | Read more

• PCI DSS 3.0 went into effect Jan. 1. Are you in compliance?

  This vendor-written tech primer has been edited by Network World to eliminate product promotion, but readers should note it will likely favor the submitter's approach.

  Greg Rosenberg | 28 Jan | Read more

• 

  Identity is the Key to Security

  Security is big business these days. With our old approach of blocking everyone at the border failing - mainly because no-one knows where the border is anymore - a risk-based approach is driving the way businesses think about their information and systems security.

  Anthony Caruana | 22 Oct | Read more

• Inside knowledge likely in Target breach, experts say

  How did what is likely to be one of the largest data breaches in history occur? Some speculate it was only possible with insider knowledge

  Antone Gonsalves | 20 Dec | Read more

• PCI Council Releases Guidelines for Cloud Compliance

  A new set of guidelines from the PCI Security Standards Council is intended to help merchants and cloud services providers comply with the PCI DSS when handling payment card data on the web.

  Thor Olavsrud | 07 Feb | Read more

• PCI Council publishes risk-assessment rules for card-processing networks

  The Payment Card Industry (PCI) Security Standards Council today issued guidelines on how businesses storing, processing or transmitting payment-card information should look at doing an annual risk assessment.

  Ellen Messmer | 16 Nov | Read more

• PCI group outlines technology to conceal sensitive account information

  The Payment Card Industry <a href="http://www.networkworld.com/topics/security.html">Security</a> Standards Council today published guidelines aimed at helping merchants and others processing payment cards make effective use of what's known as "tokenization" technologies to conceal sensitive account information.

  Ellen Messmer | 13 Aug | Read more

• Mobile payments, PCI DSS compliance: Some clarity

  Mobile payments technology is a loud sonic boom thundering through the payments industry. But are all -- or any -- of these payment schemes compliant with the <a href="http://www.csoonline.com/article/519563/the-great-pci-security-debate-of-2010-transcribed">Payment Card Industry Data Security Standard (PCI DSS?)</a>

  George V. Hulme | 05 Jul | Read more

• Survey on PCI: How it's impacting network security

  A survey of 500 information technology professionals with responsibility to assure compliance with the Payment Card Industry (PCI) security standard shows just over half find it "burdensome but necessary" in their organizations and about a third see it impacting their virtualized network environments in particular in the future.

  Ellen Messmer | 13 Jan | Read more

• CIO priorities haven't 'changed dramatically' since the GFC: NetIQ

  Awareness of the intricacies of PCI compliance regulations is crucial for CIOs, BMC’s former CIO has warned.

  Lisa Banks | 11 Jan | Read more