An article by Kim Zetter on Wired.com caught my attention: “Restaurants Sue Vendor for Unsecured Card Processor”. The gist is that several restaurants purchased Point-of-Sale (POS) systems from a particular vendor. These POS systems that were sold were apparently not Payment Card Industry – Data Security Standard (PCI-DSS) compliant and that resulted in a breach [...]
The regulatory environment overseeing the protection of sensitive information is incredibly crowded. Sarbanes-Oxley (SOX), Graham-Leach-Bliley (GLB), the Health Insurance Portability and Accountability Act (HIPAA), HITECH, Red Flags, Payment Card Industry Data Security Standard (PCI-DSS), among a host of state laws and audit guidelines seems to provide the Fort Know of IT risk management if organizations [...]
Organized cyber-gangs in Eastern Europe are increasingly preying on small and mid-size companies in the United States, setting off a multimillion-dollar online crime wave that has begun to worry the nation’s largest financial institutions. European Cyber-Gangs Target Small U.S. Firms” Washington Post August 25th Launching these attacks from “safe havens” against organizations that tend to [...]
MasterCard made a decision not to allow remote key injection capabilities that allows merchants to install new encryption keys on point-of-sale devices. Now these merchants are stuck doing this work manually at an off-site facility. Organizations that are trying to comply with the Payment Card Industry – Data Security Standard are now hamstrung in their [...]
Tandil Wordpress Theme designed by Wp Themes Planet and proudly powered by WordPress