PCI Compliance not going away - 42% not compliant
...compliant with any regulation, I would like to hear what the top 2 or 3 reasons are they aren't yet compliant to see if they map up to what we are hearing
SEARCH RESULTS
 |  |
 |  |
 |  |
 |
Showing 1-10 of 55 records
| |
| |
| |
|
Mastercard.com NOT PCI Compliant
Someone has found an XSS vulnerability on mastercard.com. The place it was found, the search function, is a notorious location for XSS vulnerabilities. The XSS payload that triggers the vulnerability leads me to believe that there was a fair amount of filtering going on but I guess not enough
Who does Mastercard pay PCI penalties to
Related...
| |
| |
| |
|
Is PCI compliance creating a false sense of security?
...compliant, but last week a breach changed all that. Last Monday, Scarborough, Maine-based Hannaford Brothers Co., a regional Grocery Store chain the Northeast U.S. (and the store I shop at and pay using my debit card) had a breach that exposed up to 4.2 million credit and debit cardholders to potential fraud
The result of this breach so far...
| |
| |
| |
|
Is PCI compliance creating a false sense of security?
...compliant, but last week a breach changed all that. Last Monday, Scarborough, Maine-based Hannaford Brothers Co., a regional Grocery Store chain the Northeast U.S. (and the store I shop at and pay using my debit card) had a breach that exposed up to 4.2 million credit and debit cardholders to potential fraud
The result of this breach so far...
| |
| |
| |
|
Is PCI Worthless?
...compliant, including (probably) Hannaford. TJX is an open question. In many cases, the companies involved were certified but found to be non-compliant after the breach, which indicates a severe breakdown in the certification process
No ASV has been dropped from PCI, even after certifying non-compliant companies. There is no accountability in...
| |
| |
| |
|
Intrusion at Stedmans.com exposes credit card information
...compliant with the standard. Why wasn't the site compliant, and what vulnerability was exploited
The company has contacted the three major national credit reporting agencies, and the company mailed a notice to consumers who may have been affected by this incident on March 10, 2008
Evan] It would be a better idea to contact Visa and Mastercard...
| |
| |
| |
|
Heading to RSA ... Hurray!
...compliant log management" (which is a concept - and it obviously does exist) and "PCI-compliant log management system" (which is an actual physical box or a set of boxes with software - and it doesn't exit since PCI DSS doesn't "rate" the compliance of logging systems
So
If you decided to deploy a log management technologies and tools in...
| |
| |
| |
|
RSA Impressions - 2: Compliance "Megatrends"
...compliant"' (meaning TJX and Hannaford). I question: is this really so? I think the truth is everybody, compliant or not, is 0wned , not that "those compliant are 0wned
All panelists predicted that governments (US and European) will be influencing security more in the near future: more laws, more regulation, more enforcement (and that...
| |
| |
| |
|
Oak Ridge National Laboratory visitor information exposed
...Compliant DOES NOT MEAN Secure! Although we all need to be compliant, this doesn't mean that efforts should stop at that. Do you want to trust the security of your information to a Senator or other lawmaker
If you think you're going to prevent all phishing attempts from [succeeding] in an enterprise, that's probably false. And if you think...
| |
| |
| |
|