Tag: PCI DSS compliance

Target Data Breach: Roughly 40 Million Credit and Debit Card Accounts May Have Been Impacted

Retail giant Target became the target of a data breach that potentially involved 40 million customer credit and debit card records. The retailer isn’t saying how the breach happened, but Avivah Litan, a security analyst with Gartner Research, has a … Continue reading

Posted in Information Technology Tips, PCI Compliance | Tagged , , , | Leave a comment

More New PCI DSS 3.0 Requirements: Control Access, Two-Factor Authentication & POS Security

Yesterday, I blogged about the new PCI DSS 3.0 document that contains a number of clarifications, additional guidance and evolving (new) requirements. The part I’m going to focus on is the evolving requirements, as they represent the changes that ensure … Continue reading

Posted in PCI Compliance | Tagged , , , | Leave a comment

Source Code, Encrypted Data Stolen as 2.9 Million Affected in Adobe Breach

Adobe was hit with a data breach last week that compromised their source code of several products, including Adobe Acrobat, ColdFusion Builder and other Adobe products. Hackers also accessed and removed 2.9 million customers’ data, including names, encrypted credit/debit card … Continue reading

Posted in Cloud Computing, Encryption, PCI Compliance | Tagged , , , , , | Leave a comment

PCI DSS Data Breaches Increase 15 Percent; Remote Access & SQL Injections to Blame

A few major takeaways from Trustwave’s 2013 Global Security Report reveal that the retail industry was at the top of data breach investigations at 45 percent. A total of 96 percent of customer records (payment card data, PII (personally identifiable … Continue reading

Posted in Information Technology Tips, PCI Compliance | Tagged , , , , , | Leave a comment

Total Ecommerce Sales Rise 18 Percent in Q2 with Mobile Commerce

InternetRetailer.com recently reported that ecommerce sales have increased to 18.4 percent, as estimated by the U.S. Commerce Department in Q2, bringing online sales back to their pre-recession growth rates. Comparing Q2 2013 to Q2 2012, ecommerce sales rose to $65 … Continue reading

Posted in Mobile Security, PCI Compliance | Tagged , , , , , | Leave a comment

PCI DSS V.3.0: Risk Assessment Frameworks for Ecommerce, Mobile & Cloud Computing

The PCI Security Standards Council recently issued a press release about anticipated changes to the PCI DSS (Payment Card Industry Data Security Standards) and PA-DSS (Payment Application Data Security Standard) as a preview for the changes in the third version … Continue reading

Posted in Cloud Computing, PCI Compliance | Tagged , , , , , | Leave a comment

New Technology Fuels Global PCI DSS Compliance Security Concerns

Last month Jeremy King, the European Director for the Payment Card Industry Security Standards Council (PCI SSC) had an interview with BankInfoSecurity.com, in order to address pain points they encounter as they continue to shape the Payment Card Industry Data … Continue reading

Posted in PCI Compliance | Tagged , , , | Leave a comment

Achieving a Layered Data Security Solution for PCI DSS Compliance

For ecommerce websites, partnering with a PCI DSS compliant hosting provider can help you achieve many requirements of the standard while building a layered security solution to protect credit cardholder information, whether stored or merely in transit. Where should you … Continue reading

Posted in PCI Compliance | Tagged , , , , , , , | Leave a comment

International Hacking Scheme Aided by SQL Injections; 12 Major Companies, 160 Million Affected

Recently, Nasdaq.com reported on hackers that gained access to more than a dozen major global payment processor, retailer and financial institutions’ systems, including NASDAQ (trading platform unaffected), 7-Eleven, JC Penney, Heartland Payment Systems, Visa Jordan, Global Payment, JetBlue, Dow Jones … Continue reading

Posted in HIPAA Compliance, Information Technology Tips, PCI Compliance | Tagged , , , , , , , , , | Leave a comment

Encrypting Data for Data Breach Prevention

The State of California released a report on 2012 data breaches that found 1.4 million residents would have had their information protected if companies had encrypted data in transit when sent from their company’s network. The report showed 131 data … Continue reading

Posted in Encryption, Information Technology Tips | Tagged , , , , , , , | Leave a comment