Click here for a free PCI scan from ControlScan

What is PCI Compliance

PCI Merchants Featured Article

Written by:
Joan Herbig
Sept. 17, 2008
Joan Herbig

Five Common Myths Debunked

There is a vast need for better information about PCI compliance in the marketplace. It is a relatively new standard and there is a lack of good information available. In this article I will outline a few of the most commonly held myths that we hear day in and day out from merchants, acquirers and service providers – along with the hard truths.

Myth #1: Breaches only happen to big-box retailers.
Myth #2: PCI compliant merchants cannot be breached. Myth #3: E-commerce merchants that use PCI compliant shopping carts or payment gateways are by default PCI compliant.
Myth #4: PCI compliance is too expensive.
Myth #5: PCI compliance is getting easier.

Read more...

 

 

Recent Articles

The Real Cost of Data Breach (It’s more than you think—and you’re more at risk than you know.)

Confusion. Denial. Plain old wishful thinking. That’s what we hear when we talk to people about the real cost of data breach. Whether you’re an ISO, an acquirer, or a merchant, maybe you’ve even said (or at least thought) some of these things yourself...
Read more...

 

PCI SAQ – Forms and Validation Types

If you are a merchant or service provider and accept credit cards you must validate PCI compliance at least annually. Network Security Scans are required of all merchants and service providers with external-facing IP addresses that collect, process or transmit payment account information.

Read more...

 

PCI DSS: 5 Guidelines for Gaining PCI Compliance

If an organization doesn't know that they need to be PCI compliant, or if an organization just doesn't want to be bothered by having to obtain PCI compliance, it soon will not matter. The goal is to have all merchants, regardless of their merchant level, compliant with PCI DSS.

Read more...

 

 

5 Steps to Manage a Data Breach?

Industry-specific guidelines and compliance measures, such as the Payment Card Industry's Data Security Standards (PCI DSS), are continuing to emphasize the enforcement of measures to close any and all security loopholes in a company's infrastructure

Read more...

 

5 Steps to Manage a Data Breach? Part II

Though a smaller data breach-affecting only 250 private records-than its predecessors at TJX and ChoicePoint, the musical instrument company Bananas.com (Bananas at Large) was the victim of a hacker, who, according to published reports stole an administrative password by accessing Bananas.com systems as a remote user.

Read more...