Skip to the main content.
Contact
Contact

David Gamey

Principal Security Consultant & Researcher at Control Gap Inc.

David Gamey

Principal Security Consultant & Researcher at Control Gap Inc.

2 min read

If You Take Credit Cards By Phone or Mail - You Need to Read About Visa's October Mandate

PCI Rules Aren't the Only Ones You Need to Comply With Most organizations concerned with payment compliance are focused on the PCI Data Security...

Read More >

4 min read

Equifax Move Over, Here Comes The Cambridge Analytica and Facebook Scandal!

We've been following security and breaches for a long time and they have been getting unquestionably worse. While mega-credit card breaches seem to...

Read More >

3 min read

PCI DSS May Require Pulling Up Your SOX (or ISO)

Executives and managers in organizations preparing for their first onsite PCI security assessment may feel confident that having passed a SOX audit...

Read More >

5 min read

Understanding "Connected-to" - Is The Internet In Scope For PCI DSS?

PCI DSS is all about scope. Getting scope right or wrong is perhaps the single most critical factor determining the ultimate success or failure of an...

Read More >

2 min read

8-digit BIN Issues and Risks Remain after PCI Truncation Rules Clarified

Last month we wrote this article about issues arising from the addition of new BIN ranges and the lack of clear guidance specifically with 16-digit...

Read More >

1 min read

In The Payments World, Even Canadians Have ZIP Codes!

Many Canadians traveling to the US have experienced the frustration of running into a form of address verification. This is a common extra check...

Read More >

1 min read

Hurricane Harvey: How To Avoid Scams When Donating To Natural Disaster Charity Groups

It's hard to imagine a natural disaster until it starts happening in your own backyard. Unfortunately, the people of Texas have experienced and...

Read More >

5 min read

A Misadventure on THE AIRLINE THAT SHALL NOT BE NAMED

Whether you embrace or eschew the label of Road Warrior, if you've traveled extensively for business then you have experienced the trials and...

Read More >

7 min read

NIST Moves on Sweet32 - 3DES, Blowfish, and Others - Mostly Unsafe

Now is the time to stop using 64-bit block length ciphers such as 3DES (TDEA) and Blowfish in general purpose applications of cryptography. In 2016,...

Read More >