Several clients have recently been asking about “Virtual Network Segmentation” products that claim to segment networks to reduce PCI compliance. They may use ARP or VLANs to control access to various ...

PCI DSS compliance enhancement primarily depends on understanding the scope of compliance. This means it is necessary to define the perimeters of the Cardholder Data Environment (CDE) within the ...

Sameer Malhotra is cofounder and CEO of TrueFort, a former Wall Street tech exec and an expert in IT infrastructure and cybersecurity. Locking down sensitive data isn’t just a good idea, it’s ...

As CTO of an international fintech and an advisory board member to the Payment Card Industry Security Standards Council, I often spend my free time reading all things payments and security related - ...

The art of mastering PCI DSS compliance is primarily about defining the scope of compliance, meaning the perimeters of the Cardholder Data Environment (CDE) within the enterprise network. The goal is ...

It’s not breaking news that payment fraud is on the rise. According to the Association of Financial Professionals (AFP)’s latest report, nearly 75% of organizations were targets of a payments fraud ...

This vendor-written tech primer has been edited by Network World to eliminate product promotion, but readers should note it will likely favor the submitter’s approach. Version 3.0 of the PCI Data ...

2013 was not only a year of multiple major breaches exposing cardholder data (CHD) but also a year in which the Payment Card Industry Security Standards Council (PCI SSC) released the next major ...

Myriad merchants find themselves at the end of the PCI compliance barrel and are spending significant amounts of time, money and effort in achieving PCI compliance. Advice from companies that have ...

Relying on a DMZ to protect your network and data is like putting money in a bank that depends on one guard and a single gate to secure its deposits. Imagine how tempting all those piles of money ...