PYMNTS

MAY 20, 2020

Home Chef, the Chicago-based meal kit and food delivery company, announced a data breach after a hacker sold information on its 8 million customers on a dark web marketplace, according to Bleeping Computer. In response to a request for comment from PYMNTS, Home Chef sent a link to its Q&A page about the breach.

Data Breach 53

Data Breach Breach Request for Comment Database 53

PYMNTS

FEBRUARY 1, 2019

Home improvement startup Houzz revealed that it suffered a data breach. The company said in a FAQ on its website that the breach was discovered in late December 2018, and that “a file containing some of our user data was obtained by an unauthorized third party.”.

Data Breach 80

Data Breach Breach Law Enforcement Encryption 80

PYMNTS

AUGUST 2, 2019

In a recently reported data breach, Poshmark said it recently learned that an unauthorized third party acquired data from some users. The fashion marketplace company said the information does not include physical addresses or financial data, according to a web post.

Data Breach 76

Data Breach Breach Encryption Addressing 76

PYMNTS

MAY 19, 2020

BlockFi suffered a “temporary data breach” on May 14 that exposed some customer information, the company reported in an incident report. The company said that a third party breached and used the phone number of a BlockFi staffer to get into a part of the company’s encrypted back-office system without permission.

Data Breach 84

Data Breach Breach Digital Currency eWallet 84

PYMNTS

JANUARY 4, 2019

Following reports of its data breach last year, Marriott said on Friday (Jan. ” However, the company said, “there is no evidence that the unauthorized third party accessed the master encryption key needed to decrypt the encrypted passport numbers.” million encrypted passport numbers in addition to the 5.25

Data Breach 70

Data Breach Breach Encryption Database 70

PYMNTS

FEBRUARY 21, 2019

Security and technology consulting company Accutive is rolling out a new solution designed to give enterprises an alternative to data encryption to protect sensitive information. 20), Accutive said it is launching its Data Discovery and Data Masking solutions. In a press release on Wednesday (Feb.

Encryption 51

Encryption Compliance Data Breach Data Encryption 51

PYMNTS

DECEMBER 15, 2016

Reportedly, an unauthorized third party stole data associated with the more than 1 billion Yahoo user accounts back in 2013. This billion-user figure means this newest hack is the largest data breach in the digital era. billion buyout of its core assets, said it would review the impact of the latest breach.

Data Breach 72

Data Breach Breach Law Enforcement Encryption 72

PYMNTS

DECEMBER 6, 2018

The hackers behind that data breach at Marriott International may have been working for the government of China as part of an intelligence-gathering effort, reported Reuters. In what may be among the largest data breaches in history, Marriott International said Friday morning (Nov.

Data Breach 55

Data Breach Breach Database Disputes 55

PYMNTS

NOVEMBER 30, 2018

In what may be among the largest data breaches in history, Marriott International said Friday morning (Nov. 30) that as many as 500 million guests’ data was accessed, tied to a breach of the Starwood hotel guest reservation database.

Data Breach 43

Data Breach Breach Database Encryption 43

PYMNTS

DECEMBER 31, 2018

So far this year (and there’s still one more day), Verizon reported that there have been 2,216 confirmed data breaches across 65 countries. Even more disturbing, perhaps, is that 68 percent of those breaches took months for the breached companies to discover. According to early reports, the data breach impacted 0.5

Data Breach 92

Data Breach Breach Database Compromise 92

Stax

MARCH 4, 2024

Taking precautions to implement security measures like firewalls and cybersecurity training helps to protect cardholder data and other sensitive information from cybercriminals. It’s also critical to ensure card information is protected from data breaches with secure encryption and cybersecurity standards in place.

PCI DSS 88

PCI DSS Payment Security Security MFA 88

PYMNTS

OCTOBER 17, 2017

In a blog post , the company announced news that the data breach may have happened several years ago, but that it was only recently alerted to the cyberattack. However, the encryption algorithms used to secure passwords back in 2013 aren’t valid anymore because of advancements in computer hardware.

Data Breach 40

Data Breach Breach Encryption Cybersecurity 40

VISTA InfoSec

JANUARY 22, 2024

It boils down to minimizing the risk of data breaches and maximizing the security of cardholder information. This is achieved through a multi-pronged approach: Data Encryption: Requirement 3 mandates the use of strong cryptographic controls such as encryption for stored cardholder data. PCI DSS v3.2.1

PCI DSS 100

PCI DSS Encryption Procedures Authorization 100

VISTA InfoSec

APRIL 28, 2024

The Payment Card Industry Data Security Standard (PCI DSS) compliance 4.0 offers essential guidelines and a framework to safeguard cardholders’ data and mitigate any potential data breaches that may occur in banks. Protecting stored cardholders’ data.

PCI DSS 130

PCI DSS Compliance Assessments Data Breach 130

PYMNTS

OCTOBER 31, 2016

According to the report, the banking regulator said the data breach had to do with a former employee at the agency removing more than 10,000 records without receiving authorization to do so. The data on the thumb drives was encrypted, and there isn’t evidence that shows the data taken was misused or disclosed to anybody.

Office of the Comptroller of the Currency 74

Office of the Comptroller of the Currency Data Breach Breach OCC 74

PYMNTS

JUNE 29, 2018

Another day, another (possible) data breach: Adidas revealed that it has come under attack from cybercriminals looking to steal personal information. The breach could potentially affect millions of customers, who were notified on Thursday (June 28) about the incident on the Adidas U.S.

Data Breach 40

Data Breach Breach Compromise Encryption 40

Stax

SEPTEMBER 17, 2024

While the news may bring breaking headlines about stolen or lost data from large corporations, every business can take the steps necessary to secure sensitive data. TL;DR PCI compliance is essential because it helps prevent data breaches, ultimately cultivating customer trust. So how can your business stay PCI compliant?

PCI DSS 88

PCI DSS Credit Cards Compliance Process 88

PYMNTS

APRIL 24, 2018

The Securities and Exchange Commission (SEC) announced news on Tuesday (April 24) that Altaba , the entity formerly known as Yahoo, has agreed to pay a $35 million penalty to settle charges related to the massive data breach at Yahoo that exposed the personal data of hundreds of millions of users.

Data Breach 40

Data Breach Breach Procedures Assessments 40

Basis Theory

OCTOBER 1, 2024

Whether that is collecting credit card numbers to transmit with a payment gateway, placing details into a shared customer relationship management system, or storing card numbers in an encrypted database—all of this sensitive information must be protected according to the specifics of the PCI-DSS standard.

PCI DSS 88

PCI DSS Compliance Encryption Assessments 88

PYMNTS

OCTOBER 5, 2020

These providers could also partner with PCI compliance solutions providers to deliver end-to-end encryption support, managed firewall services and other tools to their sellers. Retailers already turn to these one-stop solutions to connect with different payment gateways and tokenize their card data.

Data Breach 82

Data Breach Breach PCI DSS Compliance 82

Payments Source

MARCH 29, 2018

POS payment encryption products are widely available and have been for many years, from technologies designed to secure card data from the point it is entered into the payment terminal, writes Ruston Miles, founder and chief strategy officer of Bluefin Payment Systems.

Encryption 65

Encryption Breach Security Product 65

VISTA InfoSec

JULY 31, 2023

Segregation of Networks: This involves isolating the cardholder data environment (CDE) from the rest of the business’s network. Doing so can help reduce the scope of PCI DSS compliance and minimize the risk of data breaches. Hackers target data in transit, making it important to implement safeguards and encryption measures.

PCI DSS 130

PCI DSS Security Encryption Compliance 130

PYMNTS

JANUARY 27, 2017

As if Yahoo didn’t have enough on its plate, the tech company is now facing a probe from the Securities and Exchange Commission as to whether or not it could have acted more promptly in response to two massive data breaches that left over a billion customers’ information compromised. America’s Data Breach Problem.

Data Breach 71

Data Breach Breach Security Risk 71

Fintech News

APRIL 10, 2024

This merger brings together Entrust’s security solutions with Onfido’s advanced identity verification technology, aiming to address the growing threats of identity fraud and data breaches. said Todd Wilkinson, President and Chief Executive Officer, Entrust.

Verification 106

Verification Data Breach Encryption Cybersecurity 106

VISTA InfoSec

APRIL 5, 2024

Operational interruption happens when cybersecurity is breached. Data breaches don’t easily get overlooked. The aftermath of a data security concern could change the landscape of your business, depending on the incident. Also, training employees in the appropriate handling of data will significantly improve security.

Best Practices 262

Best Practices Business Continuity Continuity Compromise 262

Stax

MARCH 15, 2024

The primary security standards that payment systems typically adhere to include: Payment Card Industry Data Security Standard (PCI DSS): PCI DSS sets forth requirements for securing payment card data, including encryption, access control, network monitoring, and regular security testing.

Process 88

Process Security PCI DSS Encryption 88

Payments Source

APRIL 20, 2018

EMV, encryption are all necessary to protect merchants from data breaches, writes Jeff Zimmerman, COO of Clearent. PCI compliance can't solve all security problems.

Breach 91

Breach CHIPS Data Breach EMV 91

VISTA InfoSec

MAY 24, 2024

Understanding PCI DSS Developed by the Payment Card Industry Security Standards Council (PCI SSC), it is mandatory for all businesses to be PCI compliant to protect cardholders, companies, the Merchants and Service Providers they do business with from data breaches, fraud, and unauthorized access.

PCI DSS 202

PCI DSS Small Business Assessments Compliance 202

PYMNTS

MARCH 8, 2017

7), Bluefin Payment Systems announced its new partnership with international online payments and fraud and data management solutions provider First Atlantic Commerce (FAC). And in order to devalue their card data in the POS and make it useless to hackers, all merchants worldwide need technologies such as PCI-validated P2PE.

Encryption 40

Encryption Data Breach Payment APIs and Integration Point-of-Sale (POS) 40

Segpay

FEBRUARY 21, 2024

Tokenization: Generative AI contributes to the implementation of tokenization, a technique that replaces sensitive data, such as credit card numbers, with unique tokens. These tokens are generated for each transaction, reducing the risk of data breaches. This provides digital payment methods with an additional level of security.

AI 105

AI Innovation Fraud Detection Encryption 105

The Fintech Times

SEPTEMBER 24, 2024

Remonda Kirketerp-Møller , CEO of Muinmos “Through advanced technologies such as AI and machine learning, regtech solutions can identify, classify, and protect sensitive data across systems, ensuring that financial institutions comply with data protection regulations in real-time.

Privacy 107

Privacy Compliance PCI DSS Rules 107

EBizCharge

JULY 19, 2024

Lack of encryption Encryption is essential for protecting sensitive cardholder data during transmission over public networks. Standard PDF forms don’t typically offer end-to-end encryption for data in transit or at rest, making the sensitive information vulnerable to interception or unauthorized access by cybercriminals.

PCI DSS 52

PCI DSS Compliance Credit Cards Third-Party Service Provider 52

Payments Source

JULY 30, 2019

Though involving an eye-popping 106 million credit card applicants' information, Capital One's breach was also unusual in a number of ways, including that it was quickly caught via a responsible disclosure program run by the bank.

Breach 68

Breach Data Breach Credit Cards FBI 68

Clearly Payments

JUNE 7, 2024

Payment Gateway Tokenizes Data Action : The payment gateway API tokenizes the sensitive payment information. Details : Tokenization replaces the sensitive card information with a secure token, reducing the risk of data breaches. Details : The acquiring bank forwards the request to the card network (e.g.,

Payment Gateways 59

Payment Gateways Gateways API Payment APIs and Integration 59

PYMNTS

JANUARY 9, 2018

VTech also failed to link to its privacy policy in the appropriate places – a moot point, since the policy falsely stated that most personal information submitted by users through these two portals would be encrypted. “As

FTC 43

FTC Data Breach Breach Privacy 43

PYMNTS

OCTOBER 17, 2018

Bluefin, the PCI-validated point-to-point encryption (P2PE) solutions company announced on Wednesday (Oct. 17) that it has partnered with TokenEx for data security. TokenEx fights data theft while also helping companies reduce the costs associated with PCI compliance. ”

Data Security 62

Data Security Security Data Breach Encryption 62

PYMNTS

JUNE 4, 2018

Targeting computers running the Microsoft Windows operating system, the malware encrypted users’ files and demanded payment in bitcoin equivalent to about $300 within 72 hours to regain access. The news comes about a year after a major ransomware attack affected more than 200,000 computers in 150 countries across the globe.

Data Breach 43

Data Breach Ransomware Breach Cybersecurity 43