CSOONLINE.com - PCI and Compliance

CSOONLINE.com - PCI and Compliance http://www.csoonline.com/ en_US (c) Copyright 2008 CXO Media, Inc. All Rights Reserved. Fri, 25 Jul 2008 16:10:41 GMT 2008-07-25T16:10:41Z en_US (c) Copyright 2008 CXO Media, Inc. All Rights Reserved. FUD Watch | Vendor Hype Escalates Over PCI Deadline http://www.csoonline.com/article/413963/FUD_Watch_Vendor_Hype_Escalates_Over_PCI_Deadline Monday is the day merchants must be in compliance with PCI DSS Requirement 6.6. That means the security vendor PR machine is in overdrive. Fri, 27 Jun 2008 04:00:00 GMT Bill Brenner http://www.csoonline.com/article/413963/FUD_Watch_Vendor_Hype_Escalates_Over_PCI_Deadline 2008-06-27T04:00:00Z Researchers: Notification Laws Not Lowering ID Theft http://www.csoonline.com/article/383313/Researchers_Notification_Laws_Not_Lowering_ID_Theft Over the past five years, 43 U.S. states have adopted data breach notification laws, but has all of this legislation actually cut down on identity theft? Not according to researchers at Carnegie Mellon University. Thu, 05 Jun 2008 04:00:00 GMT Robert McMillan http://www.csoonline.com/article/383313/Researchers_Notification_Laws_Not_Lowering_ID_Theft 2008-06-05T04:00:00Z Security Agency Calls For EU Laws on Breach Disclosure http://www.csoonline.com/article/376817/Security_Agency_Calls_For_EU_Laws_on_Breach_Disclosure A European Union-wide advisory body this week called for security breach disclosure regulations tougher than those in the U.S. as a step toward raising awareness of the seriousness of security threats. Mon, 02 Jun 2008 04:00:00 GMT http://www.csoonline.com/article/376817/Security_Agency_Calls_For_EU_Laws_on_Breach_Disclosure 2008-06-02T04:00:00Z Cyberattacks a Sarbanes-Oxley Issue? http://www.csoonline.com/article/330763/Cyberattacks_a_Sarbanes_Oxley_Issue_ Kevin Coleman of Technolytics Institute says cyberattack concerns are starting to appear in SEC filings. Thu, 10 Apr 2008 04:00:00 GMT http://www.csoonline.com/article/330763/Cyberattacks_a_Sarbanes_Oxley_Issue_ 2008-04-10T04:00:00Z Threat Watch | Cold Boot: Should New Attack on Encrypted Disks Change the Way Lawmakers Approach Disclosure Legislation 'Safe Harbors'? http://www.csoonline.com/article/328918/Threat_Watch_Cold_Boot_Should_New_Attack_on_Encrypted_Disks_Change_the_Way_Lawmakers_Approach_Disclosure_Legislation_Safe_Harbors_ Recent research from Princeton, McGraw Security Services illustrates how the lack of encryption specifications in legislation could put consumer data at risk. Fri, 04 Apr 2008 04:00:00 GMT Rick Cook http://www.csoonline.com/article/328918/Threat_Watch_Cold_Boot_Should_New_Attack_on_Encrypted_Disks_Change_the_Way_Lawmakers_Approach_Disclosure_Legislation_Safe_Harbors_ 2008-04-04T04:00:00Z The Complete Guide to Security Breach Disclosure http://www.csoonline.com/article/217082/The_Complete_Guide_to_Security_Breach_Disclosure Six-part set of articles takes 360-degree look at the implications of new laws that require organizations to notify people whose personal information has been compromised Fri, 29 Feb 2008 05:00:00 GMT Sarah D. Scalet http://www.csoonline.com/article/217082/The_Complete_Guide_to_Security_Breach_Disclosure 2008-02-29T05:00:00Z CSO Disclosure Series | User Education: How to Respond to a Data Breach Disclosure http://www.csoonline.com/article/217049/CSO_Disclosure_Series_User_Education_How_to_Respond_to_a_Data_Breach_Disclosure Just find out that your personal information has been compromised? Here’s what to do. Wed, 20 Feb 2008 05:00:00 GMT Kathleen Carr http://www.csoonline.com/article/217049/CSO_Disclosure_Series_User_Education_How_to_Respond_to_a_Data_Breach_Disclosure 2008-02-20T05:00:00Z Interview: How to Make Guests Feel at Home (and Still Comply with PCI and Sarbanes Oxley Too) http://www.csoonline.com/article/217040/Interview_How_to_Make_Guests_Feel_at_Home_and_Still_Comply_with_PCI_and_Sarbanes_Oxley_Too_ The head of information security for the company that owns the Grand Ole Opry gives a snapshot of his road to compliance Fri, 15 Feb 2008 05:00:00 GMT Katherine Walsh http://www.csoonline.com/article/217040/Interview_How_to_Make_Guests_Feel_at_Home_and_Still_Comply_with_PCI_and_Sarbanes_Oxley_Too_ 2008-02-15T05:00:00Z CSO Disclosure Series | Data Breach Notification Laws, State By State http://www.csoonline.com/article/221322/CSO_Disclosure_Series_Data_Breach_Notification_Laws_State_By_State Five years after California's landmark SB 1386, our interactive map shows you which 38 states have passed laws requiring companies to notify consumers whose personal information has been compromised. Part of an in-depth series about disclosing security breaches. Tue, 12 Feb 2008 05:00:00 GMT Scott Berinato http://www.csoonline.com/article/221322/CSO_Disclosure_Series_Data_Breach_Notification_Laws_State_By_State 2008-02-12T05:00:00Z CSO Disclosure Series | What's Next with Disclosure Legislation? http://www.csoonline.com/article/217027/CSO_Disclosure_Series_What_s_Next_with_Disclosure_Legislation_ An interview with lawyer and breach notification expert Tanya Forsheit on why the United States still doesn’t have a federal breach notification law. Part of an in-depth series about disclosing breaches Mon, 11 Feb 2008 05:00:00 GMT Scott Berinato http://www.csoonline.com/article/217027/CSO_Disclosure_Series_What_s_Next_with_Disclosure_Legislation_ 2008-02-11T05:00:00Z CSO Disclosure Series | The Dos and Don'ts of Disclosure Letters http://www.csoonline.com/article/217018/CSO_Disclosure_Series_The_Dos_and_Don_ts_of_Disclosure_Letters One security breach, two letters, 11 lessons in the art of telling customers you screwed up. Two PR pros deconstruct the messages that Monster.com and USAJOBS were really giving to customers whose personal information had been disclosed. Part of an in-depth series about disclosing breaches. Wed, 06 Feb 2008 05:00:00 GMT Scott Berinato http://www.csoonline.com/article/217018/CSO_Disclosure_Series_The_Dos_and_Don_ts_of_Disclosure_Letters 2008-02-06T05:00:00Z CSO Disclosure Series | What California's New Medical Disclosure Law Means for the Rest of Us http://www.csoonline.com/article/217010/CSO_Disclosure_Series_What_California_s_New_Medical_Disclosure_Law_Means_for_the_Rest_of_Us New state law AB 1298, aimed at reducing instances of medical identity theft, could prompt similar legislation elsewhere, but experts are still unsure whether out-of-state companies with information about Californians must comply Mon, 04 Feb 2008 05:00:00 GMT Katherine Walsh http://www.csoonline.com/article/217010/CSO_Disclosure_Series_What_California_s_New_Medical_Disclosure_Law_Means_for_the_Rest_of_Us 2008-02-04T05:00:00Z Industry View: Calculating the True Cost of PCI Non-Compliance http://www.csoonline.com/article/216939/Industry_View_Calculating_the_True_Cost_of_PCI_Non_Compliance Symark’s Ellen Libenson does the math. Mon, 07 Jan 2008 05:00:00 GMT http://www.csoonline.com/article/216939/Industry_View_Calculating_the_True_Cost_of_PCI_Non_Compliance 2008-01-07T05:00:00Z Improve Your Network Security Posture http://www.csoonline.com/article/221319/Improve_Your_Network_Security_Posture Five overlooked categories of network compliance risk, and how to address them Thu, 20 Dec 2007 05:00:00 GMT http://www.csoonline.com/article/221319/Improve_Your_Network_Security_Posture 2007-12-20T05:00:00Z What I Learned From the Top Five Security Events of 2007 http://www.csoonline.com/article/216853/What_I_Learned_From_the_Top_Five_Security_Events_of_ Prat Moghe of Tizor Systems draws five key lessons from five data breaches. Mon, 03 Dec 2007 05:00:00 GMT http://www.csoonline.com/article/216853/What_I_Learned_From_the_Top_Five_Security_Events_of_ 2007-12-03T05:00:00Z