This week, the PCI Security Standards Council (SSC) announced their release of Revision 1.1 to SAQ 3.2. The SSC characterizes this revision as “errata,” and after careful examination, it is truly mostly “errata.” That is, there are small language changes, some corrected misspellings and a few instances of … Read more
Consumers raise red flags about non-compliant businesses. While most of the PCI compliance questions we receive are from businesses working to understand and implement the standard, there is one question we are asked time and again by consumers. That question is, “How do I report … Read more
Prepare Your Online Business for PCI 3.2 As they continue to evolve, the PCI DSS and its corresponding Self-Assessment Questionnaires (SAQs) are reflecting an increasing scrutiny on the way online businesses implement and manage the e-commerce functionality. Online Retailers in Hackers’ Crosshairs The majority of … Read more
According to recent statistics from Visa, 80% of small-business data breaches are associated with insecure implementation and/or servicing by point-of-sale (POS) integrators and resellers. The activities leading to these breaches are in direct violation of the PCI DSS, and Visa has taken action by issuing … Read more
Prepare Your Business for PCI 3.2 As promised, the PCI SSC released the new version 3.2 Self-Assessment Questionnaires (SAQs) last Friday, April 29. Although this is an incremental PCI DSS release, it’s important to understand how the 3.2 SAQs differ from those issued with PCI … Read more
Simplify PCI compliance. At the beginning of 2015, businesses were validating their PCI compliance according to PCI DSS v3.0. Since that time, PCI DSS v3.1 was released and now the release of PCI DSS v3.2 is imminent. According to the PCI Security Standards Council (SSC): … Read more