PCI SSC Issues New Data Breach Guidance

September 30, 2015 • Published by Administrator PCI 101 Council, Data Breaches, Incident Response, PCI SSC, PCI SSC Guidance

The PCI Security Standards Council (SSC) has issued welcome new guidance to help organizations respond to a data breach event. In its September 29 press release, the Council writes: “For any organization connected to the internet, it is not a question of if but when … Read more

PAN Storage and the PCI DSS

June 11, 2015 • Published by Scott Dingman PCI 101 Cardholder Data, Cryptography, Data Storage, Hashes, Hashing, PAN, PAN Data, PCI SSC, Tokens, Truncation

The Basics of Storing PAN Data While the only Pan you might currently know is Peter, you should also get to know and understand the acronym PAN if your business accepts credit cards. PAN stands for Primary Account Number, and it is a key piece … Read more

A First Look at PCI DSS 3.1

April 22, 2015 • Published by Tim Thomas Industry Topics PA-DSS, PCI 3.1, PCI SSC, SAQ, SSL/TLS

The PCI Security Standards Council (PCI SSC) has now officially released PCI DSS v3.1. This release contains some relatively minor clarifications needed after the last major release (v3.0) went into full effect January 1, 2015. The primary driver for this new release, however, is the … Read more

PCI Council Issues Bulletin on “GHOST” Vulnerability

February 2, 2015 • Published by Administrator Industry Topics Council, GHOST, Linux, PCI SSC

The PCI Security Standards Council (SSC) has issued an urgent bulletin containing information on protecting your business against the GHOST vulnerability. Please take a moment to read this important bulletin. Access the complete PCI SSC Bulletin on GHOST here.