SEARCH RESULTS
 
Showing 1-10 of 241 records
 
Expand article

PCI V1.2, a good start but still not enough

2008-09-03 16:56:31 by Burton Group in Security and Risk Management Strategies Blog
 
...PCI Security Standards Council released the preliminary details of the PCI Data Security Standard (DSS) V1.2 thats due out in October. While many Analysts and Reporters have already written on the topic (Ill be releasing an extensive update on Burton Groups PCI coverage around the October release date), they really havent commented on whats...
 
Tags: pci, security, security assessor, security model, pci dss, dss, pci security requirements, requirements, qsa
 
 
 
 
Expand article

PCI V1.2, a good start but still not enough

2008-09-03 16:56:31 by Burton Group in Security and Risk Management Strategies Blog
 
...PCI Security Standards Council released the preliminary details of the PCI Data Security Standard (DSS) V1.2 that???s due out in October. While many Analysts and Reporters have already written on the topic (I???ll be releasing an extensive update on Burton Group???s PCI coverage around the October release date), they really haven???t...
 
Tags: pci, security, security assessor, security model, pci dss, dss, pci security requirements, requirements, qsa
 
 
 
 
Expand article

Is PCI compliance creating a false sense of security?

2008-03-28 09:44:50 by Burton Group in Security and Risk Management Strategies Blog
 
...PCI compliant, but last week a breach changed all that. Last Monday, Scarborough, Maine-based Hannaford Brothers Co., a regional Grocery Store chain the Northeast U.S. (and the store I shop at and pay using my debit card) had a breach that exposed up to 4.2 million credit and debit cardholders to potential fraud The result of this breach so...
 
Tags: pci compliance, compliant, pci compliant merchant, pci, pci compliance statement, merchant, pci compliant, pci dss, pci compliance measures
 
 
 
 
Expand article

Is PCI compliance creating a false sense of security?

2008-03-28 09:44:50 by Burton Group in Security and Risk Management Strategies Blog
 
...PCI compliant, but last week a breach changed all that. Last Monday, Scarborough, Maine-based Hannaford Brothers Co., a regional Grocery Store chain the Northeast U.S. (and the store I shop at and pay using my debit card) had a breach that exposed up to 4.2 million credit and debit cardholders to potential fraud The result of this breach so...
 
Tags: pci compliance, compliant, pci compliant merchant, pci, pci compliance statement, merchant, pci compliant, pci dss, pci compliance measures
 
 
 
 
Expand article

PCI compliance are you just checking the box?

2007-11-14 22:05:00 by Patrick McGregor in Data Protection, Management and Leakage
 
...PCI) standards . I speak with many retailers in my role BitArmor helps them secure and manage cardholder data in their environments. One of the challenges that retail CISOs face is selling senior management on the funding of PCI initiatives. Often, senior management would rather invest in opening a new store than in purchasing an encryption...
 
Tags: pci, pci compliance, pci requires, address pci challenges, challenges, address, pci initiatives, retailers, data protection benefits
 
 
 
 
Expand article

Is PCI DSS "Too Prescriptive"?

2008-09-22 15:43:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -
 
...PCI compliance at SecureWorld Bay Area the other week. What is interesting is that almost every time there is a discussion about PCI DSS, somebody crawls out of the woodwork and utters the following: " PCI is too prescriptive! ", as if it is a bad thing (e.g. I mentioned it before here I used to react to this with " Are you stupid?! PCI being...
 
Tags: pci, pci dss, compliance, compliance fun, pci compliance, compliance checklists, fun, security, regulatory compliance
 
 
 
 
Expand article

Fun PCI FAQ - Good Reading

2008-11-26 20:30:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -
 
...PCI FAQ here , created by Andrew Plato. He reminds people about a few of the common "PCI misconceptions" (like, "when is the PCI deadline? - Yesterday") and key facts (like, "Do organizations using third-party processors have to be PCI-compliant? - Yes Finally, I also love, love, love his reminder that there are no "PCI -compliant products"...
 
Tags: pci -compliant products, products, pci-compliant product, pci-compliant, cool pci faq, love, pci compliance, third-party processors, single product
 
 
 
 
Expand article

PCI compliance, building the base

2008-06-12 11:54:22 by Burton Group in Security and Risk Management Strategies Blog
 
...PCI compliant companies, like Hannaford Brothers ( http://www.networkworld.com/news/2008/031708-hannaford-data-breach.html ), Okemo Mountain Resort ( http://www.okemo.com/okemowinter/security update.asp ), etc. Credit data is being stolen! While this is exceedingly bad, I have a theory on why this is happening Before I get into my theory Id...
 
Tags: pci compliance, pci compliance requirements, military, top secret information, military branch, information, guard, guard houses, data
 
 
 
 
Expand article

PCI compliance, building the base

2008-06-12 11:54:22 by Burton Group in Security and Risk Management Strategies Blog
 
...PCI compliant??? companies, like Hannaford Brothers ( http://www.networkworld.com/news/2008/031708-hannaford-data-breach.html ), Okemo Mountain Resort ( http://www.okemo.com/okemowinter/security update.asp ), etc. Credit data is being stolen! While this is exceedingly bad, I have a theory on why this is happening Before I get into my theory...
 
Tags: pci compliance, pci compliance requirements, military, top secret information, military branch, information, data, credit data, guard