Verizon Says Card Security Only Getting Worse

A recent report by Verizon has recently said that businesses that accept both credit and debit cards aren’t maintaining compliance with PCI DSS, creating an opportunity for ongoing credit card fraud. PCI DSS has 12 different requirements created by companies like Visa, MasterCard, and American Express, and within those, there are 260 detailed standards businesses have to follow if they want to process credit card transactions.

Verizon has said that compliance is a two stage assessment process. There’s an initial report of compliance and a final report of compliance, but only 21% of organizations meet their requirements at all. For the most part, businesses treat it as a test you only have to study for once a year.

There are three major areas where businesses are failing. They don’t protect stored data well, they don’t regularly test security systems, and they don’t maintain information security policies as well as they should. What’s more is that many don’t encrypt data outside of the main database.


Leave a Reply

Your email address will not be published. Required fields are marked *