Is PCI Compliance a Law? Should it be?

February 27, 2009 • Published by Fritz Young Archive Acquirers, ISOs, Laws, Lawsuits, Merchants, Small Business, SMB

Is PCI compliance a law? The short answer is no. The long answer is that while it is not currently a federal law, there are state laws that are already in effect (and some that may go into effect) to force components of the PCI … Read more

Data Breaches Part II: Five Steps to Manage a Data Breach

October 22, 2007 • Published by Admin Archive Acquirers, Breaches, Forensics, Incident Response, ISOs, Laws, Merchants, PCI Risk, Regulation, Security Awareness, Small Business, SMB

Though a smaller data breach than its predecessors at TJX and ChoicePoint, the musical instrument company Bananas.com (Bananas at Large) was the victim of a hacker, who, according to published reports stole an administrative password by accessing Bananas.com systems as a remote user. What’s interesting … Read more