Lessons in Due Diligence
An article by Kim Zetter on Wired.com caught my attention: “Restaurants Sue Vendor for Unsecured Card Processor”. The gist is that several restaurants purchased Point-of-Sale (POS) systems from a particular vendor. These POS systems that were sold were apparently not Payment Card Industry – Data Security Standard (PCI-DSS) compliant and that resulted in a breach [...]
Wednesday December 2nd, 2009 in , breach, data protection, due diligence, information security, PCI, security mistakes, vulnerability management | No Comments »