PCI SSC Archives - Page 2 of 3

PCI SSC

PCI SSC publishes PCI Secure Software Standard 1.1 and supporting program documentation

May 3, 2021

Version 1.1 of the PCI Secure Software Standard introduces the Terminal Software Module, a new security requirements module for payment software intended for deployment and …

PCI SSC releases PCI Secure Software Lifecycle (SLC) Standard 1.1

February 23, 2021

The PCI Security Standards Council (PCI SSC) has published version 1.1 of the PCI Secure Software Lifecycle (SLC) Standard and its supporting program documentation. The PCI …

ATM cash-out: A rising threat requiring urgent attention

October 9, 2020

The PCI Security Standards Council (PCI SSC) and the ATM Industry Association (ATMIA) issued a joint bulletin to highlight an increasing threat that requires urgent awareness …

Only 27.9% of organizations able to maintain compliance with the PCI DSS

October 8, 2020

Global organizations continue to put their customers’ cardholder data at risk due to a lack of long term payment security strategy and execution, flags the Verizon report. …

PCI SSC updates standard for payment devices to protect cardholder data

June 18, 2020

The PCI Security Standards Council has updated the standard for payment devices to enable stronger protections for cardholder data. Meeting the accelerating changes of payment …

PCI Point-to-Point Encryption Standard 3.0 released

December 16, 2019

The PCI Security Standards Council (PCI SSC) has updated the PCI Point-to-Point Encryption Standard (P2PE) and supporting program. PCI P2PE Version 3.0 simplifies the process …

CPoC: New data security standard for contactless payments

December 5, 2019

The PCI Security Standards Council (PCI SSC) published a new data security standard for solutions that enable merchants to accept contactless payments using a commercial …

PCI SSC unveils new assessor qualification program

October 4, 2019

The PCI Security Standards Council (PCI SSC) launched a new assessor qualification program to support the PCI Software Security Framework (SSF), a collection of standards and …

Online skimming: An emerging threat that requires urgent awareness and attention

August 6, 2019

A growing threat that all merchants and service providers should be aware of is web-based or online skimming. These attacks infect e-commerce websites with malicious code, …

PCI SSC unveils two new validation programs for software vendors and assessors

June 28, 2019

The PCI Security Standards Council (PCI SSC) announced two new validation programs for use by payment software vendors to demonstrate that both their development practices and …

PCI SSC accepting applications for the Qualified PIN Assessor Program

February 22, 2019

PCI SSC is accepting applications for the Qualified PIN Assessor (QPA) Program. The QPA Program will enable security professionals to perform assessments using the PCI PIN …

New requirements for the secure design and development of modern payment software

January 18, 2019

The PCI Security Standards Council (PCI SSC) published new requirements for the secure design and development of modern payment software. The PCI Secure Software Standard and …

PCI SSC

PCI SSC publishes PCI Secure Software Standard 1.1 and supporting program documentation

PCI SSC releases PCI Secure Software Lifecycle (SLC) Standard 1.1

ATM cash-out: A rising threat requiring urgent attention

Only 27.9% of organizations able to maintain compliance with the PCI DSS

PCI SSC updates standard for payment devices to protect cardholder data

PCI Point-to-Point Encryption Standard 3.0 released

CPoC: New data security standard for contactless payments

PCI SSC unveils new assessor qualification program

Online skimming: An emerging threat that requires urgent awareness and attention

PCI SSC unveils two new validation programs for software vendors and assessors

PCI SSC accepting applications for the Qualified PIN Assessor Program

New requirements for the secure design and development of modern payment software

Don't miss

LastPass, GoTo announce security incident

A year later, Log4Shell still lingers

Cybersecurity engineering under the Federal Trade Commission

Predatory loan mobile apps grab data, harass users and their contacts

Why are K-12 educational institutions reluctant to report cyber incidents?