PCI Security Standards

SEPTEMBER 9, 2024

The PCI Security Standards Council (PCI SSC) has published a new Information Supplement:  PCI DSS Scoping and Segmentation Guidance for Modern Network Architectures. This

PCI DSS 199

PCI DSS Best Practices Payment Security Security 199

PCI Security Standards

MARCH 26, 2025

I'm Alicia Malone, Director of Communications and Public Relations for the PCI Security Standards Council. As many of our listeners are aware, we are quickly approaching the deadline to adopt the future-dated requirements of PCI DSS version 4.0.1 on March 31st, 2025. and 11.6.1. Welcome, Lauren.

PCI DSS 108

PCI DSS Assessments Data Security Security 108

PCI Security Standards

NOVEMBER 28, 2023

PCI DSS v4.0 introduced the concept of targeted risk analysis (TRA) with two different types of TRAs to provide entities with the flexibility to evaluate risk and determine the security impact of specific requirement controls, as appropriate for their environment.

PCI DSS 216

PCI DSS Risk Security 216

PCI Security Standards

JANUARY 31, 2024

With 31 March 2024 rapidly approaching, Lauren Holloway, Director, Data Security Standards, shares some key questions, answers, and resources to help entities successfully transition to PCI DSS v4.0.

PCI DSS 210

PCI DSS Data Security Security 210

VISTA InfoSec

APRIL 28, 2024

It is of utmost importance for banks to ensure the safety and security of the cardholders’ data. The Payment Card Industry Data Security Standard (PCI DSS) compliance 4.0 In this blog, we will understand PCI DSS compliance 4.0 In this blog, we will understand PCI DSS compliance 4.0

PCI DSS 130

PCI DSS Compliance Assessments Data Breach 130

VISTA InfoSec

NOVEMBER 12, 2024

PCI DSS is a set of requirements that is applied to every small and large organization that accepts, stores, processes, or transmits cardholder data. In particular, PCI DSS for SaaS companies is essential, as these platforms frequently handle sensitive customer information and must adhere to the latest security standards.

PCI DSS 130

PCI DSS Compliance Encryption Audit 130

VISTA InfoSec

NOVEMBER 12, 2024

PCI DSS is a set of requirements that is applied to every small and large organization that accepts, stores, processes, or transmits cardholder data. In particular, PCI DSS for SaaS companies is essential, as these platforms frequently handle sensitive customer information and must adhere to the latest security standards.

PCI DSS 130

PCI DSS Compliance Encryption Audit 130

VISTA InfoSec

JULY 31, 2023

The PCI DSS Checklist is a crucial first step in securing your business. It’s a tool that helps businesses ensure they’re meeting all the requirements of the Payment Card Industry Data Security Standard (PCI DSS). The 12 Essential Steps to Achieving PCI DSS Compliance 1.Install

PCI DSS 130

PCI DSS Security Encryption Compliance 130

VISTA InfoSec

JULY 5, 2023

Data security has become an essential aspect of our lives and is more crucial than ever before. This renders them accountable for complying with both HIPAA and PCI regulations. In this blog post, we’ll delve into the significance of PCI DSS compliance in healthcare and explore how it helps protect patient data and privacy.

PCI DSS 130

PCI DSS Compliance Data Breach Breach 130

VISTA InfoSec

MARCH 5, 2024

In the ever-evolving landscape of data security, staying updated with the latest standards and regulations is crucial. The Payment Card Industry Data Security Standard (PCI DSS) is no exception. With the recent release of PCI DSS v4.0, Changes in Requirement 9 of PCI DSS v3.2.1 PCI DSS v4.0

PCI DSS 147

PCI DSS Procedures Assessments Checks 147

Fintech Finance

DECEMBER 16, 2024

Praxis Tech , a leading Payment Orchestration Platform, today announces that it has achieved the ISO/IEC 27001:2022 certification, the leading global standard for Information Security Management Systems (ISMS). This demonstrates that security excellence is not just a goal but a fundamental part of how we operate.”

ISOs 95

ISOs PCI DSS Accreditation Security 95

VISTA InfoSec

MAY 12, 2024

Given this recent wave of cyberattacks, all small businesses must do their part to secure their Point of Sale (POS) systems from unauthorized parties. To keep your business secure, only engage with payment processors and vendors that comply with PCI DSS.

PCI DSS 277

PCI DSS Security Compromise Best Practices 277

PCI Security Standards

AUGUST 28, 2024

The PCI Security Standards Council (PCI SSC) has released the PCI Data Security Standard (PCI DSS) Report on Compliance (ROC) Template for v4.0.1 to align with PCI DSS version 4.0.1, to address minor errors, and to reformat the template.

PCI DSS 120

PCI DSS Data Security Compliance Addressing 120

PCI Security Standards

AUGUST 20, 2024

Merchants around the world use the Payment Card Industry Data Security Standard (PCI DSS) to safeguard payment card data before, during, and after a purchase is made. As of 31 March 2024, the PCI Security Standards Council (PCI SSC) officially retired PCI DSS v3.2.1.

PCI DSS 131

PCI DSS Processors Issuers Data Security 131

VISTA InfoSec

MARCH 6, 2024

Keeping track of who is accessing your systems and data is a critical part of any security program. Requirement 10 of the PCI DSS covers logging and monitoring controls that allow organizations to detect unauthorized access attempts and track user activities. In the newly released PCI DSS 4.0, to PCI DSS 4.0.

PCI DSS 130

PCI DSS Procedures Best Practices Risk Assessment 130

VISTA InfoSec

MAY 12, 2024

This accomplishment not only underscores the company’s commitment to stringent security standards but also sets a benchmark for the entire industry. It focuses on controls related to security, availability, processing integrity, confidentiality, and privacy of data.

PCI DSS 279

PCI DSS Compliance Security ISOs 279

VISTA InfoSec

JANUARY 23, 2024

Welcome back to our ongoing series on the Payment Card Industry Data Security Standard (PCI DSS). In our previous posts, we’ve covered the various requirements of this critical security standard. Also Read : PCI DSS Requirement 3 Requirement 4 pertains to PAN transmissions unless otherwise specified.

PCI DSS 130

PCI DSS Encryption Procedures Best Practices 130

VISTA InfoSec

JANUARY 29, 2024

Welcome back to our ongoing series on the Payment Card Industry Data Security Standard (PCI DSS). We’ve been journeying through the various requirements of this critical security standard, and today, we’re moving forward to explore Requirement 5 of PCI DSS v4.0. compared to PCI DSS v3.2.1.

PCI DSS 130

PCI DSS Phishing Best Practices Procedures 130

VISTA InfoSec

FEBRUARY 21, 2024

Welcome back to our ongoing series on the Payment Card Industry Data Security Standard (PCI DSS) requirements. This requirement is a critical component of the PCI DSS that has undergone significant changes from version 3.2.1 It’s all about keeping things secure and orderly. - to the latest version 4.0.

PCI DSS 130

PCI DSS Database Best Practices Procedures 130

PCI Security Standards

JANUARY 30, 2025

In response to stakeholder feedback regarding the complexity of implementing the new e-commerce security Requirements 6.4.3 in PCI Data Security Standard (PCI DSS) v4.0.1, and 11.6.1

PCI DSS 206

PCI DSS Assessments Data Security Security 206

PCI Security Standards

FEBRUARY 28, 2025

The PCI Security Standards Council (PCI SSC) is pleased to announce the release of a Frequently Asked Question (FAQ), developed in direct response to industry requests for greater clarity on the new eligibility criteria for the recently revised Self-Assessment Questionnaire (SAQ) A. which take effect on 1 April 2025.

PCI DSS 116

PCI DSS Assessments Security 116

PCI Security Standards

DECEMBER 14, 2023

To address stakeholder feedback and questions received since PCI DSS v4.0 was published in March 2022, PCI SSC is planning a limited revision of the standard. Proposed changes include correcting format and typographical errors and clarifying the focus and intent of some of the requirements and guidance.

PCI DSS 116

PCI DSS Addressing Request for Comment 116

VISTA InfoSec

FEBRUARY 28, 2024

In our ongoing series of articles on the Payment Card Industry Data Security Standard (PCI DSS), we’ve been examining each requirement in detail. These practices adhere to industry security standards and the NIST Special Publication 800-63 guidelines, supporting the payment ecosystem. Significant shift in approach.

PCI DSS 130

PCI DSS Best Practices Authentication Rules 130

VISTA InfoSec

FEBRUARY 16, 2024

Welcome back to our series on PCI DSS Requirement Changes from v3.2.1 It mandates the use of vendor-supplied security patches and secure coding practices for in-house developed applications. PCI DSS v3.2.1 PCI DSS v4.0 c: Confirm that software applications comply with PCI DSS. -

PCI DSS 100

PCI DSS Procedures Best Practices Verification 100

PCI Security Standards

SEPTEMBER 20, 2023

Do not pass up the chance to collaborate and gain knowledge on the latest developments in payment security at the upcoming PCI SSC Community Meetings. These events feature presentations from some of the sharpest minds in payment security. The PCI SSC Community Meetings are open to all in the payments industry.

PCI DSS 127

PCI DSS Compliance Payment Security Security 127

Stax

JULY 16, 2024

If merchants are exposed to security vulnerabilities when processing digital payments, the risk of cardholder data falling into the wrong hands increases exponentially. This is why PCI DSS compliance is critical. In this article, we’ll discuss why your business needs to ensure PCI compliance and what the 12 PCI DSS v4.0

PCI DSS 88

PCI DSS Compliance Credit Cards Encryption 88

VISTA InfoSec

JANUARY 9, 2024

As we all know, data security is a constantly evolving field, and it’s essential to keep up with the latest standards and requirements. And mark your calendars, because the current PCI DSS v3.2.1 That’s right, the PCI Security Standards Council (SSC) has announced the release of the new and improved PCI DSS v4.0,

PCI DSS 113

PCI DSS Procedures Authorization Security 113

Fintech Finance

FEBRUARY 20, 2025

Runa , the leading global fintech infrastructure for the next generation of payouts experiences, today announced the launch of Runa Assure, a security suite specifically built to fortify payout processes against threats of fraud, cyberattacks, and compliance risks.

PCI DSS 86

PCI DSS Security Payment APIs and Integration MFA 86

Fintech Finance

JANUARY 6, 2025

This partnership reflects our commitment to adopting advanced technological solutions that align with Islamic principles to empower customers and enable them to manage their finances with ease and security. Our PCI-DSS certification reinforces the trust we have built with our clients by offering fully secure services.

Central Bank 98

Central Bank PCI DSS FinTech Online and Mobile Banking 98

PCI Security Standards

AUGUST 24, 2023

You can watch a replay of our LinkedIn Live Discussion on PCI DSS v4.0 where Emma Sutcliffe SVP of Standards, Lauren Holloway, Director of Data Security Standards, and Lindsay Goodspeed, Senior Manager of Communications address stakeholder questions about PCI DSS v4.0

PCI DSS 88

PCI DSS Data Security Addressing Security 88

VISTA InfoSec

JANUARY 22, 2024

In our exploration of PCI DSS v4.0’s While the previous two requirements focused on network and access control, Requirement 3 tackles the crucial issue of securing sensitive cardholder information once it’s captured and stored. Changes in Requirement 3 from PCI DSS v3.2.1 PCI DSS v3.2.1

PCI DSS 100

PCI DSS Encryption Procedures Authorization 100

VISTA InfoSec

MARCH 25, 2025

This new milestone not only marks our ongoing dedication to excellence but also strengthens our standing as a trusted partner for all the organizations seeking comprehensive and reliable security solutions. CREST (Council of Registered Security Testers) is a globally recognized, not-for-profit accreditation body.

Cybersecurity 130

Cybersecurity Accreditation PCI DSS Assessments 130

PCI Security Standards

APRIL 20, 2023

In the third installment of the “Questions with the Council” video series, Senior Manager, Tom White answers the payment industry’s questions about PCI DSS v4.0. The questions focus specifically on training offerings related to PCI DSS v4.0. Questions include:

PCI DSS 93

PCI DSS Payments 93

Basis Theory

NOVEMBER 12, 2024

Historically, data security has been treated as featureless and burdensome—but a necessary expense incurred by organizations. Today, we can tokenize anything from credit card primary account numbers (PAN) to one-time debit card transactions or social security numbers. The tokenization platform securely stores the sensitive data.

Encryption 157

Encryption Payment APIs and Integration PCI DSS Returns 157

Fintech Finance

FEBRUARY 24, 2025

Furthermore, the Mea Card Data solution will empower fintechs and select issuers to provide cardholders with secure access to sensitive card details directly within the issuer’s application, leveraging MeaWallets PCI DSS certified infrastructure.

PCI DSS 89

PCI DSS Issuers Push-to-Card Digital Payments 89

PCI Security Standards

JULY 10, 2024

The PCI Data Security Standard (PCI DSS) has long included requirements for external vulnerability scans conducted by PCI Approved Scanning Vendors (ASVs), and these requirements have also been included in prior versions of some Self-Assessment Questionnaires (SAQs). For PCI DSS v4.x,

PCI DSS 134

PCI DSS Breach Assessments Data Security 134

Fi911

FEBRUARY 26, 2025

The Payment Card Industry Data Security Standard (PCI-DSS) is a set of global standards developed to safeguard cardholder data. Compliance ensures robust security practices to prevent breaches and protect sensitive payment card data. Staying up-to-date with PCI-DSS compliance should be a top priority.

PCI DSS 52

PCI DSS Compliance MFA Assessments 52