29 September 2016

EMVCo and PCI SSC Combine Expertise on 3-D Secure 2.0
Technical body EMVCo and PCI Security Standards Council have announced that they are collaborating to support the upcoming launch of 3-D Secure 2.0 (3DS 2.0). The announcement was made at the PCI Security Standards Council Community Meeting of global cyber security experts in Las Vegas, U.S, last week (20-22 September).

22 September 2016

PCI Council Marks 10 Years of Securing Payments
Global payment and cybersecurity experts met this week at the annual PCI North America Community Meeting to discuss the state of payment security and its evolution going forward. Marking its 10-year anniversary, the PCI Standards Council (PCI SSC) reinforced its mission to foster secure transactions globally, emphasizing that as new cyberthreats emerge, and advances in technology change the way payments are conducted, PCI Standards will evolve to protect the next generation of payments.

09 September 2016

Payment Card Industry Security Standards Council Enhances Protections for Payment Devices
The PCI Council has updated its payment device standard to enable stronger protections for cardholder data, which includes the PIN (Personal Identification Number) and the cardholder data (on magnetic stripe or the chip of an EMV card) stored on the card or on a mobile device.

07 July 2016

New Payment Protection Resources for Small Merchants and Their Banks Help Defend Against Cybercrime
Small businesses around the world are increasingly at risk for payment data theft. Nearly half of cyber-attacks worldwide in 2015 were against small businesses with less than 250 workers, according to cybersecurity firm Symantec. In order to help these companies protect themselves and their customers, the PCI Security Standards Council (PCI SSC) Small Merchant Taskforce has developed a set of payment protection resources for small businesses.

17 June 2016

Payment Card Industry Security Standards Council Updates Hardware Security Module Standard
Today the PCI Security Standards Council (PCI SSC) published a new version of its device security standard for Hardware Security Modules (HSMs). HSMs are secure cryptographic devices that are used for cryptographic-key management and the protection of sensitive data used in payment card processing.

27 May 2016

Payment Card Industry Security Standards Council Releases Payment Application Data Security Standard Version 3.2
Today the PCI Security Standards Council (PCI SSC) published a new version of its data security standard for payment software, the Payment Application Data Security Standard (PA-DSS) version 3.2. The Payment Application Data Security Standard is used by payment application vendors to ensure their software products will protect payment card data from theft.

28 April 2016

PCI Council Releases PCI Data Security Standard Version 3.2
The PCI Council has published a new version of its data security standard, which businesses around the world use to safeguard payment data before, during and after a purchase is made. PCI Data Security Standard (PCI DSS) version 3.2 replaces version 3.1 to address growing threats to customer payment information.

08 April 2016

Payment Card Industry Security Standards Council Welcomes Serma as PCI Recognized Laboratory
PARIS, 8 April 2016 – The PCI Security Standards Council (PCI SSC) and SERMA Safety & Security, a subsidiary of SERMA Group, have announced today that SERMA Safety & Security is now a PCI recognized laboratory approved to conduct security evaluations of payment acceptance devices.

22 March 2016

European Card Payment Association and Payment Card Industry Security Standards Council Join Forces to Fight Payment Data Theft
PARIS, 22 March 2016 – Joining forces to protect against payment data theft around the world, the Payment Card Industry Security Standards Council (PCI SSC) and the European Card Payment Association (ECPA) have announced today that ECPA is now a strategic regional member of the PCI Council.

23 February 2016

Payment Card Industry Standards Council Equips Acquiring Banks and Payment Processors With New Data Security Resources
WAKEFIELD, Mass., 23 February 2016 – Today the PCI Security Standards Council (PCI SSC) announced 2016 initiatives to help acquirers and payment processors collaborate on payment security solutions with the merchant community. In addition to new, regular forums for discussion, the Council is now providing acquirer-specific PCI Data Security Standard (PCI DSS) training and a checklist resource for reviewing data security assessments required under the Standard.

28 January 2016

PCI Security Standards Council Offers Free PCI Awareness Elearning Course in Support Of International Data Privacy Day
WAKEFIELD, Mass., 28 January, 2016 — In support of International Data Privacy Day, the PCI Security Standards Council (PCI SSC), an open global forum for the development of payment card security standards, announced it will offer its PCI Awareness online training free of charge to the first 1,000 people to register on the PCI SSC website.

18 December 2015

PCI Security Standards Council Revises Date for Migrating Off Vulnerable SSL and Early TLS Encryption
WAKEFIELD , Mass., 18 December 2015 — Following significant feedback from the global PCI community and security experts, the Payment Card Industry Security Standards Council (PCI SSC), a global forum for the development of payment card security standards,today announced a change to the date that organizations who process payments must migrate to TLS 1.1 encryption or higher.

10 December 2015

PCI Security Standards Council Announces 2016 Special Interest Group Election Results
WAKEFIELD, Mass., 1 0 December 2015 — Today the Payment Card Industry Security Standards Council (PCI SSC), a global forum for the development of payment card security standards, announced the election results for its 2016 Special Interest Group (SIG) project. Special Interest Groups are community-led initiatives that address important security challenges related to PCI Security Standards. One new Special Interest Group is selected every year, but groups may run for more than 12 months in order to complete the agreed-upon goals.

01 October 2015

Payment Card Industry Summit Advances Cross-Industry Collaboration on Cybersecurity and Data Protection
WAKEFIELD, Mass., 1 October 2015 — Leading cybersecurity, technology and data forensics experts gathered in Vancouver this week at the Payment Card Industry (PCI) Security Standards Council Community Meeting to share the many advances made over the past year in protecting consumer payment information from criminals.

29 September 2015

Payment Card Industry Issues New Guidance to Help Organizations Respond to Data Breaches
WAKEFIELD, Mass., 29 September 2015 — For any organization connected to the internet, it is not a question of if but when their business will be under attack, according to a recent cybersecurity report from Symantec, which found Canada ranked No. 4 worldwide in terms of ransomware and social media attacks last year.

04 September 2015

Payment Card Industry Security Standards Council Expands Training in South America
WAKEFIELD, Mass., 4 September 2015 — Transbank, Redbanc and Nexus are the first Chilean companies to join with the Payment Card Industry Security Standards Council (PCI SSC) to train Internal Security Assessors (ISAs) in the region.

30 June 2015

PCI Council Advances Point-To-Point Encryption Standard
WAKEFIELD, Mass., 30 June 2015 — Today the Payment Card Industry Security Standards Council (PCI SSC) published an important update to one of its eight security standards, simplifying the development and use of Point-to-Point Encryption (P2PE) solutions that make payment card data unreadable and less valuable to criminals if stolen in a breach.

29 June 2015

PCI Council Publishes Update to Standard for Device Security
WAKEFIELD, Mass., 29 June 2015 — Today the PCI Security Standards Council (PCI SSC) published a new version of the PIN Transaction Security (PTS) Point of Interaction (POI) Modular Security Requirements for POI device manufacturers, as part of its process for updating standards based on market need and industry feedback. The standard ensures merchants, financial institutions and others can accept and process payment cards securely with ATMs, unattended kiosks, mobile dongles and point of sale (POS) devices.

05 June 2015

PCI Council Publishes PCI DSS Designated Entities Supplemental Validation
WAKEFIELD, Mass., 05 June 2015 — Vigilance in maintaining PCI Standards is critical in defending against breaches of cardholder data. Today, the PCI Security Standards Council (PCI SSC) published an appendix to the PCI Data Security Standard (PCI DSS) to help organizations make payment security part of everyday business practice.

02 June 2015

PCI Announces Call For Special Interest Group Project Proposals
WAKEFIELD, Mass., 02 June 2015 — Today the PCI Security Standards Council (PCI SSC) announced the start of its Special Interest Group (SIG) proposal period for 2016 projects.