PCI Security Standards Council Opens Nominations for Board of Advisors

Wakefield, Mass., Jan. 27, 2011 -- The PCI Security Standards Council (PCI SSC), a global, open industry standards body providing management of the Payment Card Industry Data Security Standard (PCI DSS), PIN Transaction Security (PTS) requirements and the Payment Application Data Security Standard (PA-DSS) today announced that nominations for election to the 2011-2013 PCI SSC Board of Advisors are now open.

The incoming Board of Advisors will represent the current roster of more than 600 PCI SSC Participating Organizations and will provide strategic and technical input to the Council, reflecting the varied perspectives of a diverse set of global stakeholders. The Council views this input as critical to the ongoing enhancement of PCI Standards. In addition to advising on standards development, the Board of Advisors plays an important role in bringing frontline feedback and ideas to PCI SSC management; leading Special Interest Groups (SIGs); and helping the Council fulfill its mission to raise awareness and adoption of PCI Standards. As a global organization, representation from EMEA, North America, Latin America and Asia Pacific on the Board of Advisors helps reflect a diversity of experiences and perspectives on the protection of cardholder data against security threats worldwide.

“Over the past two years, our previous Board has provided us with a wide range of perspectives, advice and actionable feedback. Many of the tools and resources you see from PCI SSC today, such as the Internal Security Assessor (ISA) training program, the Prioritized Approach and the Wireless Guidelines Informational Supplement, were developed with the Board’s ideas and input,” said Bob Russo, general manager, PCI Security Standards Council. “I’d like to thank the outgoing Board and to invite all Participating Organizations to consider running for a seat to share their unique industry viewpoints.”

To generate a broad range of input across a variety of stakeholders, 21 seats are available on the PCI SSC Board of Advisors, 14 will be open for nomination by current PCI SSC Participating Organizations. An additional seven will be appointed by the PCI SSC Executive Committee to ensure broad representation both geographically and across key stakeholder groups. To that end, elected seats will be distributed in the following categories: financial institutions (acquirers and issuers), payment processors, merchants (e.g. retailers, airlines) and others (e.g. technology vendors, industry associations, service providers). Only Participating Organizations are eligible to nominate and elect the Board of Advisors. Companies interested in becoming a Participating Organization may obtain more information at https://www.pcisecuritystandards.org/participation/join.shtml .

The nominations process opens on Thursday, January 27, 2011. Participating Organizations interested in serving on the Board of Advisors are invited to self nominate one representative from their company. In order to do so they must provide a short description of the company’s payment card industry participation and information regarding why the company should be elected to the Board of Advisors. This information should be submitted via the nomination form accessed through the Participating Organization portal. The nominations process, which closes on Friday, February 25, will be followed by a voting period from mid-March to early April in which Participating Organizations can vote for their representatives for the next two year term. The new Board of Advisors will be announced in early May 2011.

“Barclaycard’s term on the Board of Advisors has been a great experience for me and my organization,” said Neira Jones, head of payment security, Global Payment Acceptance, and Barclaycard. “We have worked closely with the Council on a number of payment card industry issues, chaired a Special Interest Group and written papers which have been of great benefit to our key stakeholders. I encourage other organizations and payment security experts to actively participate in the Council to secure the payment value chain by getting involved in the Board of Advisors nomination process.”

The Board of Advisors is elected every two years. Organizations serving on the
Board since 2009 include: Bank of America Merchant Services, Banrisul S.A., Barclaycard, Chase Paymentech, Cisco, Citrix Systems, EPC, ExxonMobil, First Data Corp., Global Payments, JP Morgan Chase and Co., Lufthansa Systems, McDonalds Corp., MICROS Systems, PayPal, Royal Bank of Scotland, Tesco Stores Ltd., TSYS Acquiring Solutions, VeriFone, Inc. and Wal-Mart Stores Inc.

The PCS SSC also invites Participating Organizations to attend a Council open mic providing an overview of the Board of Advisors election process from General Manager Bob Russo, followed by a live Q&A session with opportunities to address the PCI SSC.

To register for the Thursday, January 27, 2011 session, please use the following link:


http://register.webcastgroup.com/l3/?wid=0650127115534


To register for the Monday, January 31, 2011 session, please use the following link:


http://register.webcastgroup.com/l3/?wid=0650131115535


For More Information:
For more information on the PCI Security Standards Council, please visit www.pcisecuritystandards.org or contact the PCI SSC Secretariat for any questions regarding the Board of Advisors nomination or election process at secretariat@pcisecuritystandards.org.


About the PCI Security Standards Council
The mission of the PCI Security Standards Council is to enhance payment account security by driving education and awareness of the PCI Data Security Standard and other standards that increase payment data security.
The PCI Security Standards Council was formed by the major payment card brands American Express, Discover Financial Services, JCB International, MasterCard Worldwide and Visa Inc. to provide a transparent forum in which all stakeholders can provide input into the ongoing development, enhancement and dissemination of the PCI Data Security Standard (DSS), PIN Transaction Security (PTS) requirements and the Payment Application Data Security Standard (PA-DSS). Merchants, banks, processors and other vendors are encouraged to join as participating organizations.

Source: Company press release.

www.ePINDebit.com www.e-PINDebit.com www.iPINDebit.com www.PINDebit.mobi

Element Payment Services Selected as PCI Compliance Technology Provider by Rollins, Inc.

Element Payment Services will provide Rollins, Inc. with fully integrated, simple and secure payment processing solutions that ease the burden of PCI compliance and dramatically reduce the risk and liability of payment card acceptance through scope reduction.

Element Payment Services, a top 40 U.S. payment processor announces that it will provide PCI compliant processing for Rollins, Inc., a premier North American consumer and commercial services company and parent company of Orkin, HomeTeam Pest Defense, PCO Services, Western Pest Services, The Industrial Fumigant Company, Waltham Services and Crane Pest Control. Rollins will integrate its proprietary Focus business management software application with Element’s Express Processing Platform through Hosted Payments, the payment industry’s first solution to completely remove software applications from the scope of PCI DSS / PA-DSS compliance by eliminating the transmission and storage of cardholder data.

“We have elected to work with Element to process our payments due to their superior technology and commitment to the industry,” said Andy Smith, director of treasury, Rollins, Inc. “We are excited to have our locations work directly through Element’s Express Processing Platform, and expect the transition to be seamless.”  In addition to offering PCI compliance relief to Rollins, Hosted Payments will dramatically reduce the scope of PCI compliance for individual pest control companies within the brand, while maintaining the operational functionality required for running the businesses. Hosted Payments features tokenization technology, which allows merchants to securely access card data for future transactions, without assuming the risk and liability of storing sensitive information through a point of sale (POS) application. Rollins merchants can securely perform scheduled payments and card-on-file billing without compromising their customers’ sensitive information and their own PCI compliance.

“We’ve been working with Rollins’ merchants for some time now through our partnership with several industry-leading Independent Software Vendors in the pest control space. Through this integration, we will now be able to provide the entire Rollins corporation with PCI compliance relief and the most valuable payment processing available,” says Sean Kramer, president and CEO, Element Payment Services.

About Element Payment Services, Inc.

Headquartered in Phoenix, Arizona, Element Payment Services, Inc. is the industry leading provider of fully integrated PCI DSS compliant payment processing solutions for merchants and business management software providers. Engineered using service-oriented architecture, Element's Express Processing Platform allows for easy integration and supports advanced technologies such as point-to-point encryption, tokenization and authentication.

Processing more than $5 billion in annual transaction volume, Element's simple and secure payment solutions allow customers to easily comply with industry security requirements such as PCI DSS and PA-DSS, significantly reducing the risk associated with handling cardholder data. Element's innovative technology, Hosted Payments, was the first payment processing solution on the market to take software providers out of scope for PA-DSS/PCI DSS compliance requirements.

Element Payment Services, Inc. is a registered Merchant Service Provider with First National Bank of Omaha.

About Rollins Inc.

Rollins, Inc. is a premier North American consumer and commercial services company. Through its wholly owned subsidiaries, Orkin, LLC. PCO Services, HomeTeam Pest Defense, Western Pest Services, The Industrial Fumigant Company, Waltham Services, Inc. and Crane Pest Control, the Company provides essential pest control services and protection against termite damage, rodents and insects to over 2 million customers in the United States, Canada, Central America, the Caribbean, the Middle East, Asia, the Mediterranean and Europe from over 500 locations.

###

Contact

• Brock Robertson
  Element Payment Services 
  866.435.3636 x1794
  Email 

• Sarah Robinson
  Rollins, Inc. 
  404.888.2917
  Email

http://www.ePINDebit.com http://www.iPINDebit.com http://www.e-PINDebit.com http://www.PINDebit.mobi

Cybera Joins PCI Security Standards Council

November 18, 2010 08:17 AM Eastern Time 

Cybera Joins PCI Security Standards Council as Newest Participating Organization

Cybera to Participate in Key Standards Setting Body Protecting Payment Cardholder Data

NASHVILLE, Tenn.--(BUSINESS WIRE)--Cybera, a leading data security and PCI (payment card industry) compliance solution provider, has joined the PCI Security Standards Council as a new participating organization. As a Participating Organization, Cybera will work with the Council to evolve the PCI Data Security Standard (DSS) and other payment card data protection standards.

“Since 2001, Cybera’s mission has been to protect customer data. As a trusted PCI compliance solutions partner to merchants, simplifying the process of securing payment cardholder data is our top priority.”

The PCI DSS, endorsed by American Express, Discover Financial Services, JCB International, MasterCard Worldwide and Visa Inc., requires merchants and service providers that store, process or transmit customer payment card data to adhere to information security controls and processes that ensure data integrity. More information on the council and the standard can be found at www.pcisecuritystandards.org.

As a Participating Organization, Cybera will now have access to the latest payment card security standards from the Council, be able to provide feedback on the standards and become part of a growing community that now includes more than 600 organizations. In an era of increasingly sophisticated attacks on systems, adhering to the PCI DSS represents an entity’s best protection against data criminals. By joining as a Participating Organization, Cybera is adding its voice to the process.

“The PCI Security Standards Council is committed to helping everyone involved in the payment chain protect consumer payment data,” said Bob Russo, general manager of the PCI Security Standards Council. “By participating in the standards setting process, Cybera demonstrates it is playing an active part in this important end goal.”

“PCI compliance is critical for the security of customers and the protection of merchants,” said Cliff Duffey, President and CEO of Cybera. “Since 2001, Cybera’s mission has been to protect customer data. As a trusted PCI compliance solutions partner to merchants, simplifying the process of securing payment cardholder data is our top priority.”

About PCI Security Standards Council

The mission of the PCI Security Standards Council is to enhance payment account security by driving education and awareness of PCI security standards. Visit www.pcisecuritystandards.org for information.

About Cybera

Cybera is the leading provider of data security and PCI compliance solutions to merchants and enterprise customers in the retail and restaurant industries. Cybera’s ClearPCI solutions serve customers ranging from small businesses to large multi-national corporations with locations numbering in the tens of thousands. Cybera has been named to the Inc. 5000 for four consecutive years, the Deloitte Technology Fast 500 for two consecutive years and has won numerous industry awards. To find out why businesses trust Cybera and ClearPCI for security and PCI compliance solutions, please visit www.ClearPCI.com or call (877) 5PCINOW.

Contacts

Cybera, Inc.
Misty Mitchell, 615-301-2340
misty.mitchell@cybera.net
or
PCI Security Standards Council
Laura K. Johnson, 781-876-6250
press@pcisecuritystandards.org

Permalink: http://www.businesswire.com/news/home/20101118005293/en/Cybera-Joins-PCI-Security-Standards-Council-Newest

http://www.ePINDebit.com http://www.iPINDebit.com http://www.e-PINDebit.com http://www.PINDebit.mobi

PCI Security Standards Council Releases Version 2.0 of the PCI Data Security Standard and Payment Application Data Security Standard

—Feedback from global stakeholders shapes revisions; new standards and website ease implementation for merchants—

WAKEFIELD, Mass.--(BUSINESS WIRE)--The PCI Security Standards Council (PCI SSC), a global, open industry standards body providing management of the Payment Card Industry Data Security Standard (PCI DSS), PIN Transaction Security (PTS) requirements and the Payment Application Data Security Standard (PA-DSS), today released version 2.0 of the PCI DSS and PA-DSS. Reflecting input from the Council’s global stakeholders, this latest version is designed to provide greater clarity and flexibility to facilitate improved understanding of the requirements and eased implementation for merchants. Version 2.0 becomes effective on January 1, 2011.

“The nature of the changes is a testament to the strength and growing global maturity of the standards as a framework for securing cardholder data”

The updated standards were the main topic of discussion at the Council’s Annual Community Meetings in Orlando, Florida and Barcelona, Spainwhere, in the last stage of the lifecycle process, stakeholders had the opportunity for final review of the standards. More than 1,500 people from 600 organizations around the world participated in these gatherings, adding to the thousands of pieces of feedback the Council received from merchants, banks, processors and the PCI community throughout the development process.

A summary of changes to the standards was shared with the market prior to the release, highlighting the main types of revisions that include clarifications, additional guidance and evolving requirements.

Version 2.0 does not introduce any new major requirements. The majority of changes are modifications to the language, which clarify the meaning of the requirements and make understanding and adoption easier for merchants. Key revisions serve to reinforce the need for a thorough scoping exercise prior to assessment in order to understand where cardholder data resides; promote more effective log management in securing cardholder data; allow organizations to adopt a risk-based approach when assessing and prioritizing vulnerabilities that is based on their specific business circumstances; and accommodate the unique environments of small merchants to simplify their compliance efforts.

The standards, detailed summary of changes and supporting documentation can be found at https://www.pcisecuritystandards.org/security_standards/documents.php.

“The nature of the changes is a testament to the strength and growing global maturity of the standards as a framework for securing cardholder data,” said Bob Russo, general manager of the Council. “I want to thank each and every individual and organization who contributed to the development of these standards. It’s their input that’s critical in making the PCI Security Standards an excellent baseline for protecting payment card data.”

In addition to the standards documents, the Council has also launched a new website with updated materials and navigational tools aimed at providing its diverse stakeholders with the targeted information they need to understand the standards and how to apply them in their organizations. As part of a broader initiative to help small merchants develop their PCI security programs, it also includes a dedicated site for this key group with resources to address their unique environments.

The release of version 2.0 begins the new three year lifecycle for standards development, which streamlines the development process by aligning DSS, PA-DSS and PTS on a similar three year schedule. The lifecycle also allows for minor revisions or errata to be issued throughout the cycle as necessary.

The new standards are effective January 1, 2011, but validation against the previous version of the standard (1.2.1) will be allowed until December 31, 2011. This gives stakeholders more time to understand and implement the new versions of the standards as well as provide feedback throughout the process. However, the Council encourages organizations to transition to the updated version as soon as possible. From January 1, 2012 and moving forward, all assessments must be under version 2.0 of the standards.

The Council also invites Participating Organizations and the public to a webinar that covers the updated standards in greater depth, followed by a Q&A session with representatives from the Council’s Technical Working Group. Registration details can be found here:

November 9, 3:00 p.m. ET / noon PT (Participating Organizations only)

November 11, 11:00 a.m. ET / 8:00 a.m. PT (Participating Organizations only)

November 16, 3:00 p.m. ET / noon PT

November 18, 11:00 a.m. ET / 8:00 a.m. PT

For More Information:

For more information on the PCI Security Standards Council and how to become a Participating Organization, please visit www.pcisecuritystandards.org or contact the PCI SSC Secretariat atsecretariat@pcisecuritystandards.org.

About the PCI Security Standards Council

The mission of the PCI Security Standards Council is to enhance payment account security by driving education and awareness of the PCI Data Security Standard and other standards that increase payment data security.

The PCI Security Standards Council was formed by the major payment card brands American Express, Discover Financial Services, JCB International, MasterCard Worldwide and Visa Inc. to provide a transparent forum in which all stakeholders can provide input into the ongoing development, enhancement and dissemination of the PCI Data Security Standard (DSS), PIN Transaction Security (PTS) requirements and the Payment Application Data Security Standard (PA-DSS). Merchants, banks, processors and other vendors are encouraged to join as participating organizations.

Contacts

PCI Security Standards Council
Laura K. Johnson, +1-781-876-6250
press@pcisecuritystandards.org

Permalink: http://www.businesswire.com/news/home/20101028006605/en/PCI-Security-Standards-Council-Releases-Version-2.0

TNS Helps Industry Strengthen Payment Transaction Security

June 28, 2010 05:22 AM Eastern Daylight Time  

RESTON, Va.--(BUSINESS WIRE)--Transaction Network Services (NYSE:TNS) is playing an increasing role in helping acquirers and merchants protect sensitive cardholder information as payment transaction security continues to be a major issue for everyone involved in the industry.

“VeriShield Protect has been designed to help retailers secure their customer’s cardholder data where they are most vulnerable and we’re very pleased that, in conjunction with TNS, it is being deployed at even more stores across the US.”

The TNS suite of security solutions, which can help merchants and payment processors mitigate their compliance overheads, includes an end-to-end encryption service which is currently being deployed by at least one major retailer in the US.

In its more than 100 stores, this retailer has deployed the TNS Managed POS Encryption solution coupled with VeriShield Protect from VeriFone Systems, Inc. (NYSE: PAY) to eliminate the transmission of “clear” cardholder data within its payment network environment. This will protect its customers’ cardholder data from the point-of-sale terminal through to its payment processor, dramatically reducing risk exposure and simplifying the retailer’s ability to achieve PCI compliance.

John M. Perry, General Manager of the Americas for TNS’ Payments Division, said: “We are delighted that this tier one retailer is now using our Managed POS Encryption solution. End-to-end encryption is an important approach for retailers to consider as they are devising their overall security plans. Criminals are coming up with more creative ways to steal sensitive cardholder data and TNS’ end-to-end encryption service allows retailers to deploy the highest levels of security, right from the moment data is read from the customer’s card.

“Our unique approach to deploying the encryption technology will also allow retailers to reduce the scope of their overall compliance efforts, leading to significant cost and complexity savings. The TNS service manages the delivery of the payment transactions from the merchant to the processor, while ensuring efficient decryption en route, so retailers have limited up-front capital expense and do not need to commit ongoing personnel, management or maintenance resources to support it.”

VeriFone’s VeriShield Protect is deployed at the retailer’s POS devices and uses state of the art encryption technology to secure the information as the card is swiped. The TNS Managed POS Encryption solution transports encrypted transactions through to the TNS PCI DSS certified global backbone network. The solution then manages the decryption process, message formatting and secure delivery of the transaction to the retailer’s payment processor.

Jeff Dumbrell, VeriFone Executive Vice President, said: “Cardholder data breaches can easily result in costs in the millions of dollars, in addition to the damaging impact on a retailer’s reputation. Studies indicate that the vast majority of breaches are tied to cash register and other POS process vulnerabilities, but retailers cannot maintain constant vigilance over every access point and every place where data is stored or transported.

“VeriShield Protect has been designed to help retailers secure their customer’s cardholder data where they are most vulnerable and we’re very pleased that, in conjunction with TNS, it is being deployed at even more stores across the US.”

Multiple high capacity VeriShield Protect Decryption Gateways are located within geographically diverse TNS data centers, using dynamic alternate routing capabilities to ensure transactions are processed quickly and securely. A web based management portal is also available, providing near real-time updates on the delivery status of encrypted transactions.

For further information about TNS and VeriFone visit www.tnsi.com and www.verifone.com

About Transaction Network Services

Transaction Network Services (TNS) is a leading global provider of data communications and interoperability solutions.

TNS’ offers a broad range of networks and innovative value-added services which enables transactions and the exchange of information in diverse industries such as retail, banking, payment processing, telecommunications and the financial markets.

Founded in 1990 in the United States, TNS has grown steadily and now provides services in over 40 countries across the Americas, Europe and the Asia Pacific region, with our reach extending to many more. TNS has designed and implemented multiple data networks which support a variety of widely accepted communications protocols and are designed to be scalable and accessible by multiple methods.

For further information about TNS, visit www.tnsi.com. ‘One Connection, A World of Opportunities’

Assessor Validates VeriFone’s VeriShield Protect End-to-End Encryption Solution

Independent QSA Determines VeriShield Protect Meets All Visa Data Field Encryption Guidelines and May Take Payment Applications out of PCI Scope

SAN JOSE, Calif.--(BUSINESS WIRE)--VeriFone Systems, Inc. (NYSE: PAY), and Coalfire Systems, Inc., today announced that an independent assessment by Coalfire has determined that VeriFone’s VeriShield Protect end-to-end encryption solution meets all Visa Data Field Encryption guidelines as well as other industry standards.

“The overall scope of platforms, technology and tools are well architected and effective.”

Coalfire, a Payment Card Industry (PCI) Qualified Security Assessor (QSA), recently completed the assessment, which included technical testing, architectural assessment, industry analysis, compliance validation and peer review of VeriShield Protect. The assessment concluded that, “the VeriShield Protect solution can reduce the cost of PCI compliance assessment and validation and allow [merchants] to invest more of those dollars into risk mitigating controls.” A copy of the report is available at http://www.verifone.com/lp/verishield-protect.aspx.

In addition to achieving Visa’s best practices for data field encryption, Coalfire determined that with VeriShield Protect, a payment application or point-of-sale (POS) system that is not Payment Application Best Practices (PABP) or Payment Application Data Security Standard (PA-DSS) validated can be taken out of PCI scope if all payment data is captured through the VeriShield Protect solution and the system is cleansed of all legacy card data.

“Coalfire’s report indicates we achieved our goal of creating a payment security solution that will reduce the cost of PCI compliance,” said Jeff Wakefield, VeriFone vice president and general manager, Global Security Solutions. “With VeriShield Protect, merchants can eliminate almost all risk of payment card data compromise.”

Other key findings include:

• VeriFone’s format-preserving VeriShield Hidden Encryption meets encryption best practices and standards for cryptographic algorithms and key strength.


• The VeriShield Protect solution integrates securely with PC based POS or cash registers.


• VeriShield Hidden Encryption provided successful integration with all payment application, POS and back-office servers tested.

“The VeriFone VeriShield Protect solution has impressed our technical assessment team and our QSA auditors,” said Rick Dakin, Coalfire CEO and co-founder. “The overall scope of platforms, technology and tools are well architected and effective.”

Coalfire and VeriFone will conduct a webinar on June 22 at 1:00 P.M. EDT to review the results of the assessment; registration information is available at http://www.verifone.com/lp/verishield-protect.aspx.

Additional Resources: http://www.verifone.com/lp/verishield-protect.aspx

PCI 2.x Approved PIN Entry Devices - HomeATM SafeTPIN

Approved PIN Transaction Security

Please review the legal conditions and restrictions regarding PCI PTS approval contained in the Payment Card Industry PIN Transaction Security Testing and Approval Program Guide (PDF 2.25 MB).



  Filter PTS Vendors by Company Name:

  Show All   # A B C D E F G H I J K L M N O P Q R S T U V W X Y Z



  Filter PTS by:

Product Type:    Show AllPEDEPPUPTHSM  Versions:    Show AllPCI 1.xPCI 2.x  Sort By: Alphabetical Expiry Date     Search PTS by Vendor name, Product name, Approval number:     Export To Excel Printable Format Last Update: Apr 21st, 2010 4 Vendors, 6 Devices Hangzhou Sunyard Technology Co Ltd PTS Identifier1 Approval Number2 Version Product Type3 Expiry Date4 P80 hardware # :  HD-D-0x-S-0x firmware # :  BIOS-V001 applic # :  USR-V001 4-40043 2.x PED 30 Apr 2017 S180 hardware # :  HD-V1.01 firmware # :  BIOS-V1.01 applic # :  USR-V1.00 4-40047 2.x PED 30 Apr 2017 HomeATM PTS Identifier1 Approval Number2 Version Product Type3 Expiry Date4 SafeTPIN hardware # :  3.0 firmware # :  1.02 applic # :  4-40035 2.x PED 30 Apr 2017 Hypercom PTS Identifier1 Approval Number2 Version Product Type3 Expiry Date4 L4150 and SKP4150 hardware # :  0220xx and 0240xx firmware # :  FPE 5.P.0xx, FPE 5.P.1xx and HYCSKP_2.0x applic # :  4-60028 2.x PED 30 Apr 2017 L4150  hardware # :  0220xx firmware # :  FPE 5.P.0xx, FPE 5.P.1xx applic # :  4-60028 2.x PED 30 Apr 2017 Hypercom PTS Identifier1 Approval Number2 Version Product Type3 Expiry Date4 T42xx, M42xx hardware # :  0630xx firmware # :  5.0.x xxxxxxxx applic # :  4-60036 2.x PED 30 Apr 2017

Top of Page

Related articles by Zemanta

• Featured Post: Banking's BIG Dilemma: How to Stop Cyberheists via Customer PCs (pindebit.blogspot.com)


• Debit Card Issues: Breaches, Resolving Errors & Other Concerns (pindebit.blogspot.com)


• Online PIN Debit "Fair Share" of Online Payment Market: $12 Billion in 2006 (pindebit.blogspot.com)


• Man-in-the-Browser (MITB) Attacks Targeting Online Banks (pindebit.blogspot.com)


• Payment Card Industry Data Security Standards Expected to Evolve Based on Continued Data Breaches (pindebit.blogspot.com)