PCI SSC Archives - Help Net Security

PCI SSC

PCI SSC updates card security standards to secure the card production process

January 18, 2022

The PCI Security Standards Council (PCI SSC) announced the availability of the PCI Card Production and Provisioning Security Requirements version 3.0. The updated standard …

PCI SSC updates its device security standard for HSMs

December 23, 2021

The PCI SSC published the latest version of its device security standard for Hardware Security Modules (HSMs). HSMs are secure cryptographic devices that are used for …

Zimperium partners with PCI SSC to help secure payment data on mobile apps and devices

October 16, 2021

Zimperium announced it has joined the PCI Security Standards Council (PCI SSC) as a new Participating Organization. Zimperium will work with the PCI SSC to help secure payment …

Scoping cloud environments: Tips and best practices

August 9, 2021

The PCI Security Standards Council (PCI SSC) and the Cloud Security Alliance (CSA) issued a joint bulletin to highlight the importance of properly scoping cloud environments. …

PCI SSC publishes PCI Secure Software Standard 1.1 and supporting program documentation

May 3, 2021

Version 1.1 of the PCI Secure Software Standard introduces the Terminal Software Module, a new security requirements module for payment software intended for deployment and …

PCI SSC releases PCI Secure Software Lifecycle (SLC) Standard 1.1

February 23, 2021

The PCI Security Standards Council (PCI SSC) has published version 1.1 of the PCI Secure Software Lifecycle (SLC) Standard and its supporting program documentation. The PCI …

ATM cash-out: A rising threat requiring urgent attention

October 9, 2020

The PCI Security Standards Council (PCI SSC) and the ATM Industry Association (ATMIA) issued a joint bulletin to highlight an increasing threat that requires urgent awareness …

Only 27.9% of organizations able to maintain compliance with the PCI DSS

October 8, 2020

Global organizations continue to put their customers’ cardholder data at risk due to a lack of long term payment security strategy and execution, flags the Verizon report. …

PCI SSC updates standard for payment devices to protect cardholder data

June 18, 2020

The PCI Security Standards Council has updated the standard for payment devices to enable stronger protections for cardholder data. Meeting the accelerating changes of payment …

PCI Point-to-Point Encryption Standard 3.0 released

December 16, 2019

The PCI Security Standards Council (PCI SSC) has updated the PCI Point-to-Point Encryption Standard (P2PE) and supporting program. PCI P2PE Version 3.0 simplifies the process …

CPoC: New data security standard for contactless payments

December 5, 2019

The PCI Security Standards Council (PCI SSC) published a new data security standard for solutions that enable merchants to accept contactless payments using a commercial …

PCI SSC unveils new assessor qualification program

October 4, 2019

The PCI Security Standards Council (PCI SSC) launched a new assessor qualification program to support the PCI Software Security Framework (SSF), a collection of standards and …

PCI SSC

PCI SSC updates card security standards to secure the card production process

PCI SSC updates its device security standard for HSMs

Zimperium partners with PCI SSC to help secure payment data on mobile apps and devices

Scoping cloud environments: Tips and best practices

PCI SSC publishes PCI Secure Software Standard 1.1 and supporting program documentation

PCI SSC releases PCI Secure Software Lifecycle (SLC) Standard 1.1

ATM cash-out: A rising threat requiring urgent attention

Only 27.9% of organizations able to maintain compliance with the PCI DSS

PCI SSC updates standard for payment devices to protect cardholder data

PCI Point-to-Point Encryption Standard 3.0 released

CPoC: New data security standard for contactless payments

PCI SSC unveils new assessor qualification program

Don't miss

Stealthy firmware bootkit leveraged by APT in targeted attacks

Google Drive starts warning users about suspicious files

New infosec products of the week: January 21, 2022

The importance of securing machine-to-machine and human-to-machine interaction

New SolarWinds Serv-U vulnerability targeted in Log4j-related attacks