Diana Kelley, partner at Security Curve, an information security advisory company that performs PCI audits shares her insights into the PCI issues facing both financial institutions and retailers.
Kelley, a former information security analyst at Burton Group, was previously an information security advisor at top...
With the recent Hannaford data breach, the Payment Card Industry Data Security Standard (PCI-DSS) has come into question - how effective is it really?
Bob Russo, general manager of the PCI Security Standards Council recently shared his views on what happened at Hannaford, as well as other topics.
LendingTree, Societe Generale, TD Ameritrade. These are just a few of the most recent high profile examples of fraud and theft perpetrated by trusted insiders - and its costing these organizations billions of dollars. How is this happening?
Do you have more employees than active accounts?
Do you know who is...
For any business handling sensitive credit card information, compliance with PCI DSS requirements is absolutely critical. And with the newest security requirements taking effect June 30, 2008, you need to move quickly.
Here's some help -- a complimentary guide sponsored by Citrix which helps you achieve the latest...
The hackers that broke into Hannaford Brothers, a northeast U.S. grocery chain, may have spawned other attacks, including one at Okemo Resorts in Ludlow VT. As law enforcement and forensic experts continue to sift through the evidence of these attacks, the retailer and the ski resort remain mum on further...
One financial services organization faced multiple data security and compliance challenges, including the need to address compliance in a more cost effective way. This organization turned to database activity monitoring to protect their most valuable assets - their data. They had completed a fairly substantial SOX...
The price tag for The TJX Companies, Inc.(NYSE: TJX) to settle with MasterCard and its card-issuing banks is $24 million. This settlement, announced this week, comes on the heels of the TJX settlement with the Federal Trade Commission in late March.
While many in the industry see the FTC's settlement (no fines, but...
It has been more than six months now since the June 30, 2007, deadline for companies to show that they are in compliance with the Payment Card Industry Data Security Standards (PCI-DSS). To gauge the level of compliance and relative success of PCI-DSS, we recently caught up with Chris Farrow, Board Member at PCI...
Join in this tactical discussion of how financial institutions are using new technologies to successfully prevent, identify and respond to security threats, no matter where they originate.
Learn how to identify, prevent and rapidly respond to user threats and data breaches
Find out how, while mitigating...
Ten Steps for Safeguarding Critical Data
PCI and GLBA require that you guard critical customer and cardholder data. But to manage threats successfully while meeting these compliance challenges, organizations need a security strategy that can successfully do battle with inside as well as outside threats. Now, there is...
New Application Security Regulations: Build Compliance In
History has shown: regulation follows breaches. With over 215 million data records exposed since 2005, the PCI Data Security Standard (PCI DSS) is fast becoming the standard of data security due care. This is effective guidance not only for financial services...
If 2007 is any indication, then 2008 is going to be a wild year for financial institutions facing a slew of risk management issues.
Hanging like the sword of Damocles above all is the subprime mortgage crisis, which sees institutions looking for ways to avoid foreclosures and challenges surrounding underwriting....
PCI Compliance Centers on Security and Authorized Access
Today, all credit card merchants, service providers and retailers who process, store and transmit cardholder data have a fiduciary responsibility to protect that data and must comply with a diverse range of regulations and industry mandates. Payment networks...
You've seen the biggest stories and security incidents of 2007. Now here's a list of the most popular federal agency releases and regulations of the year.
The TJX data breach. The Bank of India hack. The San Diego County wildfires. It's been a year full of memorable disasters - and some notable recoveries and regulations, too.
As we reflect on the biggest stories of 2007, it's clear that bad news was big. Some of our most popular stories were about Commerce Bank,...
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing bankinfosecurity.com, you agree to our use of cookies.