Retailers: Credit card data inadequately protected
In light of recent data breaches that have compromised consumer information, such as the potentially massive 2008 Heartland Payment Systems breach,some congressmen are questioning whether the Payment Card Industry DataSecurity Standards, created and regulated by credit card companies, aresufficiently protecting information.
The credit card industry maintained at a congressional hearing Tuesdaythat self-regulation is effective, pointing out that since the PCIstandards were published, security breaches have occurred only when anentity is not fully in compliance with the standards.
"I have no doubt that compliance to PCI standards are the bestline of defense," said Robert Russo, director of the PCI Data SecurityStandards Council. "We have never found a breached entity to be in fullcompliance at the time of breach."
Yet representatives of the retail industry told a panel of theHouse Homeland Security Committee that when the credit card industryestablished the PCI standards in 2004, it did so mainly to reallocateits own fraud costs.
"In our view, if you peel off all the layers around PCI datasecurity standards, you will see it for what it is," said Dave Hogan,senior vice president and chief information officer for the NationalRetail Foundation. "In significant part, (it is) a tool to shift riskoff the banks' and credit card companies' balance sheets and place iton others."
Continue Reading at CNet News
![Reblog this post [with Zemanta]](http://img.zemanta.com/reblog_e.png?x-id=0f73cee3-abce-4ee0-b496-3295c9f9de2b)
Hi, (Also-Interested-For-Article-Exchange)
This is Dorothy Parker, Dear Webmaster; I thought that it is an excellent site having content related to my own site. I found your site very professional that offers excellent value to your visitors. I have noticed that you have linked to other sites and thought my website might be of interest to you and your website visitors. I am ready to give you some healthy links (both text and banner)-from-content-pages-(pr1/2/3)-of-my-websites. I have few brand new debt related articles, which I wish to post in your site.
If you are not the concerned person, then kindly forward this mail to the webmaster concerned.
Waiting for your quick reply.
Regards,
Dorothy Parker
Dorothy786@gmail.com
N.B: -- This message contains personal, privileged, and confidential information and is intended only for the individual named. If you are not the named addressee, you are NOTIFIED not to disseminate, distribute, re-transmit, copy, or utilize this e-mail, and contents herein. Please notify the sender immediately by return email if you have received this e-mail by mistake. You are FURTHER NOTIFIED to delete this e-mail and any attachments, as well as any copies made thereof, from your computer system(s). The sender does not accept liability for any errors or omissions in the contents of this message and unless explicitly stated otherwise, does not intend to give legal advice or enter in an attorney-client relationship.