“I have a convenience store which is processed through a satellite connection…”

April 1, 2014 • Published Categories PCI 101 Tags , ,

Question: I have a convenience store which is processed through a satellite connection direct to ExxonMobil. I have a PC connected to the internet which has NO connection to the POS system which processes credit card data. Do I still need to scan? Answer: Do the PC … Read more

The Top 5 Questions to ask a Prospective Penetration Tester

July 12, 2013 • Published Categories PCI 101 Tags , ,
Questions to Ask a Penetration Tester

How to Find an Expert Penetration Tester If any part of your business network is connected to the Internet, then the information your business handles is within the reach of hackers and cybercriminals. For this reason, the Payment Card Industry Data Security Standard (PCI DSS) requires that … Read more

How To Select A PCI Compliant Service Provider: Advice For Small Business Owners

June 13, 2013 • Published Categories PCI 101 Tags , , , ,

Service providers are a key component to ensuring compliance. Outsourcing to a PCI-compliant service provider is one of the best ways business owners can help reduce their PCI obligations and risk of a data breach. As a business owner, it is your responsibility to make … Read more

PCI Compliance and the Service Provider

February 26, 2013 • Published Categories PCI 101 Tags , , , , ,

Why Merchant Service Providers Must Commit to Stronger Security The complementary growth in cloud-based services such as data hosting and payment processing has created a new breed of service provider. These service providers and their systems interact with sensitive data from a variety of business … Read more

Don’t Be Fooled! There’s No Such Thing as an Automated Penetration Test.

October 22, 2012 • Published Categories PCI 101 Tags , , ,

Looking for a Penetration Test Vendor? Many small merchants, having been told they need a “network penetration test,” will seek out the quickest and cheapest way possible to comply with this Payment Card Industry Data Security Standard (PCI DSS) requirement.  This is certainly understandable, given … Read more

Five Steps Before Using a Mobile Device to Accept Credit Cards

September 17, 2012 • Published Categories Best Practices, PCI 101 Tags , , , , , ,

How mobile payment technology impacts your business. The taxi driver at the airport took your credit card using Square on an iPhone. The plumber that fixed your leaky pipes swiped your card on a PayPal device connected to an Android phone. And that posh restaurant where … Read more