Analyst: PCI Security a Devil, 'Like No Child Left Behind'
Joshua Corman, research director for enterprise security at The 451 Group, says the private sector's obsession with PCI DSS compliance is blinding it to larger threats.
Why Pen Testing Is Central to Pennsylvania's App Security
In this Q&A, Commonwealth of Pennsylvania CISO Robert Maley explains why penetration testing has become an essential tool in his security arsenal.
End-to-End Encryption: The PCI Security Holy Grail
Encryption seems like the simple answer to data security problems. So why is end-to-end encryption not ubiquitous? Implementation challenges abound. Here's how to handle encryption's 'key issues'.
4 Ways to Get the Most from Your PCI QSAs
In response to Heartland CEO Robert Carr's claim that his qualified security assessors (QSAs) missed key weaknesses during a PCI security audit of his company, security experts offer tips to get the most from an assessment.
Unmasking DLP: The Data Security Survival Guide
Need a data loss prevention (DLP) strategy but have no idea where to start technologically or culturally? Here's a series of articles and podcasts to help you find your way.
Miami Man Indicted for Massive Credit Hack
Data from more than 130M credit and debit cards was stolen.
8 Dirty Secrets of the IT Security Industry
IBM ISS Security Strategist Joshua Corman speaks out on what he believes are eight cancerous blights affecting the security industry. His goal: motivate people to wake up and battle the affliction.
One Man's View: Heartland CEO Must Accept Responsibility
Security Incite's Mike Rothman read our interview with Heartland's CEO and didn't like it one bit. Here's why.
PCI, QSAs, Hackers, and Slackers: Will the Real Enemy Please Stand Up?
CSO Senior Editor Bill Brenner dives into a contentious debate over the Heartland CEO's tirade against QSAs and searches for reason. Will he find it?
Heartland CEO on Data Breach: QSAs Let Us Down
Heartland Payment Systems Inc. CEO Robert Carr opens up about his company's data security breach, how compliance auditors failed to flag key attack vectors and what the big lessons are for other companies.
Security Directions: A Virtual Conference
Available On Demand Sept. 30 - Dec. 30
Join us for a virtual event with candid, expert information on top security challenges and issues - all from the comfort of your desktop.
Protecting PII: How to Work with IT to Manage Risk
Understand the critical nature of the test data privacy problem and get tips on how to work with IT to implement a test data privacy program.
- More Headlines
- Change Topic
Data Protection
- 6 Steps to Pull App Security Back to the Future
- Vendors Scrambling to Fix Bug in Net's Security
- Botnet Authors Crash WordPress Sites with Buggy Code
- Three-Year-Old Office Patch Stymies Most Attacks
- Analyst: PCI Security a Devil, 'Like No Child Left Behind'
- Java, BlackBerry Desktop Get Security Bug Fixes
- Microsoft Correctly Predicts Reliable Exploits Just 27% of the Time
- Put Cybersecurity Chief in DHS Not the White House, Senator Says
- Alleged Cable Modem Hacker Indicted in US
- Microsoft Links Malware Rates to Pirated Windows
