• Maintaining PCI compliance is a big challenge for most companies

    Posted February 7, 2014 - 5:55 pm

    A majority of companies that achieve annual compliance with the Payment Card Industry Data Security Standard fail to then maintain that status, leaving them vulnerable to breaches.
  • PCI DSS: is the cure worse than the disease?

    Posted February 15, 2013 - 3:56 pm

    Complying with the Payment Card Industry Data Security Standard (PCI DSS) is prohibitively expensive, and the cost of compliance bears very little relation to the cost of a breach, according to Dave Birch, director of IT consultancy Consult Hyperion.
  • Changes to PCI rules: What you need to know

    Posted June 28, 2012 - 3:04 pm

    The Payment Card Industry (PCI) rules related to the security of customer card information play a big role in network design, and with some updated modifications to the PCI Data Security Standards (DSS) 2.0 guidelines kicking in at the end of the month, here's what you need to know.
  • Mobile payments, PCI DSS compliance: Some clarity

    Posted July 5, 2011 - 9:32 am

    Those hoping for mobile payments PCI compliance answers will have to wait a bit longer, the security council says.
  • Visa excludes U.S. merchants to spur secure card adoption

    Posted February 11, 2011 - 9:43 am

    Visa has excluded U.S. businesses from a worldwide program that incents merchants to deploy more secure payment terminals, because of what it claims is the uncertainty surrounding new debit card rules.
  • Upgraded retail security standard ignores mobile payments

    Posted October 28, 2010 - 3:27 pm

    Version 2.0 of the Payment Card Industry Data Security Standard is being released Thursday by the PCI Security Standards Council, which acknowledges that mobile payment technologies haven't been addressed yet.
  • Many businesses not PCI compliant at time of data breaches

    Posted October 13, 2010 - 11:14 am

    Companies can dramatically cut their risks of data breaches by complying with payment standards, according to a new report.
  • Meeting the new PCI wireless requirements

    Posted September 24, 2010 - 4:13 pm

    Beginning Sept. 30, Visa will require merchants and related businesses to conduct wireless security scans to prove compliance with version 1.2 of the PCI Data Security Standard (PCI DSS) which is designed to safeguard cardholder data from wireless threats.
  • Adopt this PCI DSS compliance credo: Trust, but verify

    Posted August 23, 2010 - 10:44 am

    Yes, verification comes with a price, but it will more than likely be much lower than the price of a highly publicized security breach.
  • PCI DSS: 4 things to expect in the new version

    Posted July 14, 2010 - 7:42 am

    Every two years the PCI Security Standards Council (PCI SSC) issues a new version of the Payment Card Industry Data Security Standard (PCI DSS) as part of the lifecycle and feedback review process from a wide range of organizations. While no major changes are expected in the upcoming release, here's a rundown of the clarifications you'll see and what they mean to you.
  • Harnessing log data to meet PCI DSS requirements

    Posted May 18, 2010 - 8:37 pm

    The good news is that Payment Card Industry compliance has been on the rise. As of October 2009, 97% of Level 1 merchants and 94% of Level 2 merchants were already compliant, according to Visa.
  • Managing the private encryption keys to the kingdom

    Posted May 17, 2010 - 3:57 pm

    At its core the PCI Data Security Standard is nothing more than a series of guidelines that constitute security best practices. But companies that institute programs to better protect cardholder data can also leverage and extend these efforts throughout their business, ensuring that other sensitive customer, employee and partner data is better protected.
  • PCI council launches certification program for IT staff

    Posted May 5, 2010 - 4:33 pm

    The organization responsible for administering the Payment Card Industry Data Security Standard has launched a new program to help enterprises conduct self-assessments of their compliance with the standard.
  • Merchants Struggle to Comply With PCI Security In Economy

    Posted June 26, 2009 - 12:50 pm

    The heads of seven business organizations sent PCI Security Standards Council General Manager Bob Russo a cry for help earlier this month, saying the recession is making it "increasingly difficult" for merchants to meet the requirements of the Payment Card Industry's Data Security Standard (PCI DSS).
  • PCI DSS and storage of credit card data

    Posted June 23, 2009 - 5:06 pm

    The PCI (Payment Card Industry) Data Security Standard is all-encompassing, setting a standard for security and protective measures for merchants who store credit card information. Created by the credit card industry, the standard sets forth a set of core standards. From a security perspective, the standards are basic best practices.
  • PCI Debate Ignores Planned Improvement Cycle

    Posted June 22, 2009 - 12:04 pm

    Myriad industry pundits have spent copious amounts of their time bashing PCI and complaining that is does not work and therefore should be abandoned. But few of them have read the PCI Security Standards Council's Lifecycle Process for Changes to PCI DSS. Had they done so, they might be singing a different tune.
  • PCI DSS Compliance

    Posted December 12, 2008 - 5:28 am

    The exponential growth of online transactions with credit and debit cards, though has facilitated the process, but has made itself susceptible to insecurity; it has opened the gateway to greater and devastating security risks.
Join us:






Join today!

See more content
Ask a Question