Major Retailers Add PhoneFactor to Protect Credit Card Data in Time for the Upcoming Holiday Shopping Season
The holiday shopping season is notoriously the busiest time of the year for credit and debit card use. Retailers are under tremendous pressure to not only work efficiently to meet heightened demand, but to also keep a watchful eye on their customers’ data. PhoneFactor has added several new major retail chains to our customer list, each of which will be protecting their customers’ data from the latest threats this holiday season while complying with PCI Data Security Standards. Retailers who have... (Read More)
PCI DSS 2.0 Summary Unveiled – Many Questions Still Unanswered
The PCI Security Standards Council unveiled a summary of changes expected to appear in version 2.0 of the Payment Card Industry Data Security Standard (PCI DSS), which will be published October 28, 2010. According to the PCI Security Standards Council, the updated PCI standard, which will now be refreshed every three years instead of two, was based on hundreds of pieces of feedback. PCI DSS 2.0 incorporates a stronger emphasis on scoping sensitive data and a more risk-based approach for assessing... (Read More)
Mastercard Raises the Bar for PCI Compliance
On June 15th, Mastercard announced that Level 2 merchants, those processing between one and three million transactions annually, will now have to undergo an annual onsite assessment for PCI compliance. Previously these merchants were only required to complete the PCI DSS self-assessment questionnaire (SAQ). The onsite assessment, which must be completed by a PCI QSA (Qualified Security Assessor), will validate compliance with the twelve requirements set forth in the Payment Card Industry Data Security... (Read More)
Hearland Payment Systems Recertified for PCI Compliance
After reporting one of the largest breaches to date, Heartland Payment Systems was removed from Visa list of PCI DSS Validated Service Providers earlier this year. After being revalidated and submitting a Report on Compliance Visa reinstated Heartland as a PCI DSS compliant service provider in early May. Heartland recently announced that it expects to take a significant loss in Q3 resulting from more than $12.6 million dollars in fines from Visa and Mastercard, legal fees, and administrative costs.... (Read More)
Update to PCI Compliance Standards Published
Revisions to standard include clarifications and other subtle changes to ease implementation The PCI Security Standards Council (PCI SSC), a global, open industry standards body providing management of the Payment Card Industry Data Security Standard (PCI DSS), PIN Entry Device (PED) Security Requirements and the Payment Application Data Security Standard (PA-DSS), today announces general availability of version 1.2 of the PCI DSS. This latest version is the culmination of two years of feedback... (Read More)
