How the Right Hosted Payment Technologies Reduce Online Merchants' PCI Scope
If you are a small or mid-sized business (SMB) owner, the process for evaluating your online business and becoming PCI compliant can seem impossible to follow—or at the very least, extremely daunting. Luckily, there are organizations that have made it their mission to fully understand the PCI DSS so they can develop and/or implement solutions that simplify PCI compliance for you. Read more…
Key Takeaways from the Recent SSC Mobile and Cloud Guidelines
The PCI Security Standards Council (SSC) recently issued helpful new guidance surrounding cloud and mobile payment security. As consumer-driven payment technology continues to advance—seemingly in lockstep with the drum beat of cyber crime—security vigilance remains paramount.
PCI Compliance and the Service Provider
Your organization is a service provider if it hosts or manages payment data on behalf of other businesses
More and More Hackers are "Foodies." Well, Sort Of…
According to recent reports, hackers are apparently spending a lot more time discovering the latest hip, trendy restaurants. But they are not spending money on artisanal cheeses, free-range chicken, or chickpea and orzo salad with Piquillo pepper vinaigrette.
Holiday POS Security: A Quick Reference for the SMB Retailer
SMB retailers are now in the throes of the holiday season. While you've probably trained your sales staff to look for shoplifters, you may not have discussed the physical security of your POS systems.
Helping SMB Merchants Cross the Chasm of PCI Compliance [Infographic]
The last four years have been marked by continued growth in Level 4 merchant data compromise, yet a recent study report from ControlScan and Merchant Warehouse reveals that many SMB merchants are still not receiving—or effectively responding to—messages about cardholder data security.
Don't Be Fooled! There's No Such Thing as an Automated Penetration Test.
Many small merchants, having been told they need a "network penetration test," will seek out the quickest and cheapest way possible to comply with this PCI DSS requirement.
Security Logging and Monitoring (PCI DSS Requirement 10): Why all the Fuss?
Merchants who are just learning about the PCI DSS can become quickly overwhelmed by its lengthy list of requirements. In addition, many merchants may find themselves wondering whether certain requirements are even applicable to their business.