Payments Security
News
TruComply provides
insight and analysis
on PCI-related news,
so organizations can
stay current with the
PCI changes, the latest
threats, and legal
cases. In addition,
TruComply publishes
a quarterly newsletter.
Here are the most
recent news summary
and analyses found
of the nearly 500 currently
found in the TruCompliance
Suite, which is
available on a subscription
basis.
 Many
retailers easy to
hack, study says ~ Google
Are you transmitting
sensitive data over
a wireless network?
If so, this study may
interest you. Half
of more than 3,000
retail stores that
AirDefense, wireless
security company, secretly
monitored at major
shopping areas in the
U.S. and Europe use
wireless data systems
vulnerable to hacking.
The data that stores
routinely transmit
on wireless networks
include credit card
and Social Security
numbers and other ... Read
more
Visa’s
Payment Application
Best Practices Program
migrates to Council ~ PCI
Security Council
The PCI Security Standards
Council announced that
it is adding a new
standard for payment
application software.
The new standard called
Payment Application
Data Security Standard
(PA-DSS) is based on
Visa’s Payment
Application Best Practices
(PABP). A preliminary
draft of this standard
has been distributed
to the Council’s
Board of Advisors,participating
organizations, Qualified
Security Assessors
(QSAs) ... Read
more
Web
security glitch derails
TheTrainline.com ~ The
Register (UK)
Typically, when application
developers think of
improper error handling
(PCI DSS Requirement
6.5.7), they think
of eliminating overly
verbose error messages.
Such messages give
an attacker helpful
insight into potential
application vulnerabilities
to exploit. However,
error handling extends
to how the application
handles normal user
input as well and whether
error handling routines
still enforce the required
... Read
more
|
TruComply
in the News
VISA
Seeks Security
Unanimity -
TruComply CEO Chris
Noell comments
on VISA's notice
to merchants whose
payment applications
are not compliant
with PCI
ComputerWorld
Restaurant
Chain Beefs Up
Payment Card Protections -
TruComply CEO comments
on how smaller,
but fast-growing
companies can be
surprised by the
heightened PCI
requirements with
which they must
comply
ComputerWorld
Bloggers
not for easing
PCI DSS - TruComply
CEO comments on
merchant compliance
with the Payment
Card Industry's
Data Security Standard
(PCI DSS)
SearchSecurity.com
TJX:
Data Theft Began
in 2005; Data Taken
from 2003 -
TruComply CEO comments
on the need for
TJX to be validated
as PCI-compliant
eWeek
Data
Security Leader,
Vormetric Inc.
and TruComply Announce
PCI Information
Service to Reflect
Updated PCI 1.1
Marketwire
New
Credit Card Rules
Crack Down On Wireless,
Lighten Up On Encryption
Storefront
Backtalk
Former
Visa Executive
Joins TruComply
Press release
Payment
Security Veterans
Found TruComply
Press release
|
