Point-to-Point Encryption (P2PE) in the payment card industry involves deploying a recognized solution by the PCI council, where hardware, processes, and technology undergo rigorous testing against the current P2PE Standard v3.1 or earlier versions. The P2PE standard combines a recognized and certified PTS device with software and encryption methods to allow cardholder data to be encrypted upon swipe and transmitted encrypted throughout the merchant environment until decrypted within a decryption environment, inaccessible to the merchant.

In today’s rapidly evolving cybersecurity landscape, achieving and maintaining PCI compliance is more critical than ever. With the latest update to PCI DSS 4.0.1, businesses must adapt to meet new standards designed to enhance security and flexibility. This updated PCI Compliance Checklist outlines the essential steps for staying compliant while optimizing your organization’s security posture.

Welcome to our weekly breach report. This newsletter will report on recent cybersecurity breaches where user data was stolen, compromised or extorted. This newsletter is designed to keep you informed so that you can protect yourself when navigating cybersecurity threats in our digital world.

As with many things in popular culture, the PCI Data Security Standard (PCI DSS) has many myths associated with it. The PCI DSS has existed for many years and despite the efforts of the PCI Security Standards Council (PCI SSC) and industry experts, many misconceptions and myths persist. Below we will cover some common PCI DSS myths vs. the reality.

The impact of Covid 19 pandemic and the resulting shift in workflows have had a deep and significant impact on workers, home/work balance, and cybersecurity. Many companies are finding that the shift to work from home not only makes workers happier but reduces costs in overhead for central offices & costs to the employees [1]. As of June 2020, 42% of U.S. workers were working from home full time accounting for more than two-thirds of economic activity [2]. The widespread implementation of reliable broadband internet and remote access technologies facilitate this change but at what security cost? The implementation of security on home endpoints must be considered when a workforce is using personal or company-issued workstations while at home to perform their duties.

Information security structure is a complex and often underfunded matter. An increase in online demand for services, markets, or products spawns an opportunity for the deployment of automated solutions to make your IT infrastructure secure while reducing costs. This, however, comes with the price of knowledge, the deploying automated tools, SIEM, Vulnerability Scanning Apparatus, or cloud-based tools which require both knowledge of how the tool works and appropriate deployment. In addition, the whitepapers and selling points of products may not always encompass the product’s capabilities or may even overstate the effectiveness of the deployed solution.