Latest articles on PCI DSS

Highest level of PCI DSS certification achieved by the Bunker

(14/03/2012)

The Bunker is a provider of Ultra Secure Managed Hosting, Cloud Computing, Colocation, and Outsourced IT services from within Europe’s most secure data centres. The company has achieved certification on all 12 of the Payment Card Industry Data Security Standard (PCI DSS) requirements at both of its data centres. This makes it one of the few organisations able to offer a full end-to-end PCI DSS service based on pre-certified components. Achieving this significant milestone means that The Bunk... [more]

Payment Card Industry Data Security Standard - Q&A

(29/11/2011)

1. What is PCI DSS 2.0? How is it different to 1.0? PCI DSS 2.0 is the current version of the Payment Card Industry Data Security Standard (PCI DSS). This version acts as the information security standard for organisations that handle cardholder information for the major debit, credit, prepaid, e-purse, ATM and POS cards. Defined by the Payment Card Industry Security Standards Council, the standard was created to increase controls around cardholder data to reduce credit card fraud through its ... [more]

Introducing the new free PCI DSS compliance tool from Acuity

(23/11/2011)

Acuity, governance, risk and compliance (GRC) specialist, launches a free management application that allows businesses to measure, monitor and report on their compliance to PCI-DSS v2.0 payment card data security standards. Available for download from the Acuity website www.acuityrm.com, the compliance software monitors progress against the six milestones in the PCI-DSS Prioritized Approach and will identify, assess, manage and report on risks to cardholder data. It will also track residual ri... [more]

PCI Compliance the Easy Way

(03/03/2011)

Credit card fraud and misuse reaches into the billions of dollars annually. While the costs per incident may vary by merchant size, they include: - Loss of income from fraudulent transaction - Cost to reissue cards - Costs of investigation and possible litigation - Possible fines imposed by credit card companies - Loss of reputation, customer confidence and business - Possible loss of ability to accept credit cards for payment Whether you are a large retailer or a small internet boutiqu... [more]

Non-compliance is three times more costly than investing in compliance

(02/02/2011)

Multinational organizations—regardless of industry—must ensure they consistently meet compliance requirements outlined by privacy and data protection laws, regulations and policies. To do so, these organizations must employ a combination of compliance activities as they relate to process, people and technology solutions to limit risk, as well as budget dedicated to funding legal and non-legal penalties for non-compliance. By actively investing resources in compliance activities, businesses can a... [more]

Major retailers in the UK only partially aware of the PCI DSS 2.0 security standard's requirements

(10/01/2011)

According to a recent survey, almost 30 per cent of IT directors/managers of major retailers in the UK are either unaware - or only partially aware - of the PCI DSS 2.0 security standard's requirements. According to Claire Sellick, event director with the Infosecurity Europe show, it is also of significant concern that only 36.2 per cent of respondents to the survey knew that PCI DSS 2.0 includes significant changes regarding an organisation’s network architecture and virtualisation. "Wha... [more]

 

Other Security news and resources