Top 5 Takeaways from the 2013 North American PCI Community Meeting
The annual PCI Community Meetings are an important forum for discussing and gaining a stronger understanding of payment data security best practices and requirements. With the planned release of version 3.0 of both the PCI DSS and the PA-DSS in November 2013, this year's North American PCI Community Meeting was abuzz with conversation of what is to come.
How to Select a PCI Compliant Service Provider: Advice for Small Business Owners
Service providers are a key component to ensuring compliance with the Payment Card Industry Data Security Standard (PCI DSS). Outsourcing to a PCI-compliant service provider is one of the best ways business owners can help reduce their PCI obligations and risk of a data breach.
How the Right Hosted Payment Technologies Reduce Online Merchants' PCI Scope
If you are a small or mid-sized business (SMB) owner, the process for evaluating your online business and becoming PCI compliant can seem impossible to follow—or at the very least, extremely daunting.
Key Takeaways from the Recent SSC Mobile and Cloud Guidelines
The PCI Security Standards Council (SSC) recently issued helpful new guidance surrounding cloud and mobile payment security. As consumer-driven payment technology continues to advance—seemingly in lockstep with the drum beat of cyber crime—security vigilance remains paramount.
PCI Compliance and the Service Provider
Your organization is a service provider if it hosts or manages payment data on behalf of other businesses
More and More Hackers are "Foodies." Well, Sort Of…
According to recent reports, hackers are apparently spending a lot more time discovering the latest hip, trendy restaurants. But they are not spending money on artisanal cheeses, free-range chicken, or chickpea and orzo salad with Piquillo pepper vinaigrette.
Holiday POS Security: A Quick Reference for the SMB Retailer
SMB retailers are now in the throes of the holiday season. While you've probably trained your sales staff to look for shoplifters, you may not have discussed the physical security of your POS systems.
Helping SMB Merchants Cross the Chasm of PCI Compliance [Infographic]
The last four years have been marked by continued growth in Level 4 merchant data compromise, yet a recent study report from ControlScan and Merchant Warehouse reveals that many SMB merchants are still not receiving—or effectively responding to—messages about cardholder data security.
Don't Be Fooled! There's No Such Thing as an Automated Penetration Test.
Many small merchants, having been told they need a "network penetration test," will seek out the quickest and cheapest way possible to comply with this PCI DSS requirement.
Security Logging and Monitoring (PCI DSS Requirement 10): Why all the Fuss?
Merchants who are just learning about the PCI DSS can become quickly overwhelmed by its lengthy list of requirements. In addition, many merchants may find themselves wondering whether certain requirements are even applicable to their business.