Credit Card News
Advertising Disclosure
Credit-Land.com is an independent, advertising-supported web site. Credit-Land.com receives compensation from many credit card issuers whose offers appear on our site. Compensation from our advertising partners impacts how and where their products appear on our site, including, for example, the order in which they may appear within review lists. Credit-Land.com has not reviewed all available credit card offers in the marketplace.
Credit Card Applications » News » Other » Insufficient Merchant Protection of Credit and Debit Card Data

Insufficient Merchant Protection of Credit and Debit Card Data

By
Add to Favorites:
Insufficient Merchant Protection of Credit and Debit Card Data

Verizon recently completed a payment security audit of 100 businesses , 60% of which were American businesses, that store debit and credit card information. Verizon discovered only a meager 21% of those investigated were found to be compliant with current Payment Card Industry Regulations, according to an article appearing on informaitonweek.com.

There are 12 requirements that must be met to render a business compliant with the Payment Card Industry Data Security Standard. Verizon’s audit revealed that, out of everything, businesses struggled specifically with the following:

*maintaining security policies

*tracking and monitoring access to saved credit card data

*protecting stored cardholder expiration dates

*regularly testing systems and processes

According to Verizon’s research, the amount of awareness of PCI within a business is directly proportional to their level of compliance. Therefore, it seems that not enough employees are being educated about PCI.

“The more aware your organization is of the standard, the more prepared you are for the type of approach you take,” said Jennifer Mack, director of global PCI services for Verizon, in an interview for informationweek.com.

Another finding of Verizon is that a large number of merchants felt overconfident regarding their policies and procedures, which led to threats which demonstrated the highest amount of rise being more or less ignored.

One of the mistakes that small companies tend to make is in assuming their size makes them less likely to be targeted by identity thieves and hackers. The reality is, though, that some two-thirds of attacks on corporate data happened to businesses employing less than 100 people.

Visa officials claimed in an annual report that a startling 95% of credit card breaches occurred within small business environments.

In 2009 the PCI council released a Prioritized Approach in an attempt to aid businesses in determining exactly which aspects of PCI to address first to affect the greatest reduction in risk to cardholder data. However, Verizon’s audit revealed that few businesses were employing the Prioritized Approach.

“Since the Prioritized Approach emphasizes reducing risk to cardholder data, the apparent lack of adoption … may actually allow weaknesses in areas associated with higher threat likelihood and impact to exist longer than necessary,” according to Verizon’s report as per informatinweek.com. “This is a case of the end goal getting in the way of pragmatic security.”

While the latest version of PCI isn’t any stricter, it demands more from businesses as they have to do more to demonstrate that they meet compliance standards.

“The executive summary and definition of scope has been stepped up, and the detail and evidence requirements have been stepped up,” said Mack according to informationweek.com.

“The majority of our clients did end up achieving full PCI compliance in the end. Beginning January 1, there is no other choice.”

Add to Favorites:

Related News:

Citi Card Tracker Unveiled

By Dar Dowling, Posted: December 8, 2016

There is a new feature in town now that Citi credit cardholders in the U.S. can track where their replacement card is every step of the way as it travels to their mailbox. This new feature is available in the Citi Mobile App, whether the ... Continue reading
New Digital Wallet From SDCCU

By Dar Dowling, Posted: December 7, 2016

The San Diego County Credit Union (SDCCU) is rolling out their brand new digital wallet app for iPhone users. With the app people can use their phone to safely do their banking, whether that means using their phones to expedite cash ... Continue reading
Free Pizza on Papa John’s & VISA

By Dar Dowling, Posted: December 6, 2016

Eating pizza while watching a football game is a time-honored American tradition, so it’s not surprising that VISA, has teamed up with Papa John’s to give fans a little more this season. If fans use Visa Checkout they can take advantage of ... Continue reading
Get the latest news, articles and expert advice delivered to your inbox. It's FREE.
Get 0% Intro APR on Balance Transfers and Purchases for 21 months. After that, the APR will be 12.24%-22.24% based upon your creditworthiness.
For Excellent/Good Credit
Earn 1% cash back on gas and grocery purchases. Terms apply.
For Fair Credit
Guaranteed $500 Unsecured Credit Limit
For Bad Credit