2 min read
12 Tips To Avoid Credit Card Data Breaches
PCI DSS: 12 Requirements to Protect Your Customer’s Credit Card Data Traditionally, ill-intentioned criminals have targeted banking institutions to...
pci (2)
24 min read
This Week's [in]Security - Issue 260
Welcome to This Week’s [in]Security. PCI and payments: PCI updates: DSSv4 update, Training & events: Quantum Cybersecurity. New breaches: Okta &...
6 min read
PCI DSS v4 is Coming – What Can You Rely On
PCI DSS v4.0 is coming and will bring big changes. The exact nature of the changes aren’t yet available as the standard is still evolving under the...
4 min read
8-Digit BINs and the Great PCI Truncation Reset
Visa, MasterCard, Discover, JCB, and Union Pay hit ‘reset’ on the PCI DSS truncation rules in December 2021 and January 2022 providing an unexpected...
2 min read
Non-Compliance Lesson No. 3: Don't upgrade or patch your old stuff
PCI DSS can be hard and not preparing for it just makes things harder. Following this advice is guaranteed to make it both more exciting and painful....
2 min read
Non-Compliance Lesson No. 2: Outsource your payments/security and don't read the fine print
PCI DSS can be hard and not preparing for it just makes things harder. Following this advice is guaranteed to make it both more exciting and painful....
1 min read
Non-Compliance Lesson No. 1: Wait until your assessment to validate scope
PCI DSS can be hard and not preparing for it just makes things harder. Following this advice is guaranteed to make it both more exciting and painful.
11 min read
Quantum Cryptography for Risk Managers or Shor, Grover, and the Crypto-Apocalypse
According to some, quantum cryptography will revolutionize cryptography, kill our current ciphers, and reveal all our secrets. But if you're a risk...
5 min read
Why Organizations Need to Become Crypto-Agile and What that Means
Cryptographic change is a reality. Since 2006, we have seen the sunset of WEP, SSLv2, RSA-1024, SSLv3 and early TLS. We know that Triple DES and...