Understanding How PCI-Compliant Companies Can Be Breached: Security in a Post-Heartland World
Javelin Strategy & Research, June 2009, Pages: 49
The Payment Card Industry Data Security Standard (PCI DSS) raises the high water mark for data security. But there's a persistent myth that PCI compliance equals security. The reality is that PCI is only a baseline, and one that needs to be monitored constantly as the threat landscape changes. In the months following what may be the largest the data breach in U.S. history at Heartland Payment Systems®, many people are wondering if PCI is effective.