Navigating Risk Ranking for Robust PCI DSS Compliance

Harnessing the Power of AI in PCI Assessments

ByChad March 18, 2025March 20, 2025

As the world of cybersecurity changes, businesses and assessors are exploring exciting new technologies to stay in line with industry standards. Integrating Artificial Intelligence (AI) into Payment Card Industry (PCI) assessments is one innovation. The new guidelines from the PCI Security Standards Council (PCI SSC) provide a clear and secure way to weave AI into…

PCI 4.0

Digital Skimming: The Growing Threat to Businesses in the Digital Era

ByChad January 31, 2025February 11, 2025

The movement of money from physical to digital has revolutionized how we bank and shop. However, this shift has also attracted criminals, replacing traditional heists with sophisticated digital thefts. Data is as valuable as money in today’s economy, making nearly every business a potential target for digital skimming attacks. From customer lists and payroll information…

Cybersecurity | PCI | Retail & Hospitality | Small Business | Tips

End-to-End Encryption and Point-to-Point Encryption in Retail: Implementation Strategies and Benefits

ByChad December 17, 2024December 19, 2024

In the current landscape, where data breaches are a prevalent threat, safeguarding sensitive information is of utmost importance for retailers. The emergence of End-to-End Encryption (E2EE) and the growing recognition of PCI Point-to-Point Encryption (P2PE)® as a superior alternative underscore the critical role of data encryption in the retail sector. Let’s delve into these encryption methods’ differences, benefits,…

Awareness | Security

Unwrapping Social Engineering: Stay a step ahead of cybercriminals this season

ByChad November 27, 2023December 19, 2024

What do natural disasters and holidays have in common? That is when criminals love to scam people using social engineering tactics. Why? Because people are vulnerable at those times. We don’t know when the next natural disaster will strike, but we do know when the holidays will be upon us. The winter holiday season is…

News Letter | Security | Tips

Phishing Alerts — Fake Traffic Tickets & False Credit Union Messages

ByChad September 7, 2011

From the Desk of Chad M. Barr, CISSP, CISA, PCI QSA There have been a number of recent “phishing” campaigns, which are attempts by individuals or groups to solicit personal information from unsuspecting users by employing social engineering techniques. This month’s newsletter will focus on some of recent campaigns and provide guidance for protecting yourself…

Malware | Security News

The CDK Global Ransomware Attack: A Case Study in Supply Chain Disruption and Security Preparedness

ByChad July 23, 2024December 19, 2024

In June 2024, a ransomware attack targeting CDK Global, a major provider of dealership management software (DMS), sent shockwaves through the American automotive industry. The attack crippled the operations of approximately 15,000 car dealerships across the US, highlighting the critical role of technology in modern supply chains and the devastating consequences of cyberattacks. Immediate Impact…

Generative AI | PCI | PCI 4.0

Harnessing the Power of AI in PCI Assessments

ByChad March 18, 2025March 20, 2025

As the world of cybersecurity changes, businesses and assessors are exploring exciting new technologies to stay in line with industry standards. Integrating Artificial Intelligence (AI) into Payment Card Industry (PCI) assessments is one innovation. The new guidelines from the PCI Security Standards Council (PCI SSC) provide a clear and secure way to weave AI into…

PCI 4.0

Digital Skimming: The Growing Threat to Businesses in the Digital Era

ByChad January 31, 2025February 11, 2025

The movement of money from physical to digital has revolutionized how we bank and shop. However, this shift has also attracted criminals, replacing traditional heists with sophisticated digital thefts. Data is as valuable as money in today’s economy, making nearly every business a potential target for digital skimming attacks. From customer lists and payroll information…

Cybersecurity | PCI | Retail & Hospitality | Small Business | Tips

End-to-End Encryption and Point-to-Point Encryption in Retail: Implementation Strategies and Benefits

ByChad December 17, 2024December 19, 2024

In the current landscape, where data breaches are a prevalent threat, safeguarding sensitive information is of utmost importance for retailers. The emergence of End-to-End Encryption (E2EE) and the growing recognition of PCI Point-to-Point Encryption (P2PE)® as a superior alternative underscore the critical role of data encryption in the retail sector. Let’s delve into these encryption methods’ differences, benefits,…

Awareness | Security

Unwrapping Social Engineering: Stay a step ahead of cybercriminals this season

ByChad November 27, 2023December 19, 2024

What do natural disasters and holidays have in common? That is when criminals love to scam people using social engineering tactics. Why? Because people are vulnerable at those times. We don’t know when the next natural disaster will strike, but we do know when the holidays will be upon us. The winter holiday season is…

News Letter | Security | Tips

Phishing Alerts — Fake Traffic Tickets & False Credit Union Messages

ByChad September 7, 2011

From the Desk of Chad M. Barr, CISSP, CISA, PCI QSA There have been a number of recent “phishing” campaigns, which are attempts by individuals or groups to solicit personal information from unsuspecting users by employing social engineering techniques. This month’s newsletter will focus on some of recent campaigns and provide guidance for protecting yourself…

Malware | Security News

The CDK Global Ransomware Attack: A Case Study in Supply Chain Disruption and Security Preparedness

ByChad July 23, 2024December 19, 2024

In June 2024, a ransomware attack targeting CDK Global, a major provider of dealership management software (DMS), sent shockwaves through the American automotive industry. The attack crippled the operations of approximately 15,000 car dealerships across the US, highlighting the critical role of technology in modern supply chains and the devastating consequences of cyberattacks. Immediate Impact…

Generative AI | PCI | PCI 4.0

Harnessing the Power of AI in PCI Assessments

ByChad March 18, 2025March 20, 2025

As the world of cybersecurity changes, businesses and assessors are exploring exciting new technologies to stay in line with industry standards. Integrating Artificial Intelligence (AI) into Payment Card Industry (PCI) assessments is one innovation. The new guidelines from the PCI Security Standards Council (PCI SSC) provide a clear and secure way to weave AI into…

PCI 4.0

Digital Skimming: The Growing Threat to Businesses in the Digital Era

ByChad January 31, 2025February 11, 2025

The movement of money from physical to digital has revolutionized how we bank and shop. However, this shift has also attracted criminals, replacing traditional heists with sophisticated digital thefts. Data is as valuable as money in today’s economy, making nearly every business a potential target for digital skimming attacks. From customer lists and payroll information…

Cybersecurity | PCI | Retail & Hospitality | Small Business | Tips

End-to-End Encryption and Point-to-Point Encryption in Retail: Implementation Strategies and Benefits

ByChad December 17, 2024December 19, 2024

In the current landscape, where data breaches are a prevalent threat, safeguarding sensitive information is of utmost importance for retailers. The emergence of End-to-End Encryption (E2EE) and the growing recognition of PCI Point-to-Point Encryption (P2PE)® as a superior alternative underscore the critical role of data encryption in the retail sector. Let’s delve into these encryption methods’ differences, benefits,…

Awareness | Security

Unwrapping Social Engineering: Stay a step ahead of cybercriminals this season

ByChad November 27, 2023December 19, 2024

What do natural disasters and holidays have in common? That is when criminals love to scam people using social engineering tactics. Why? Because people are vulnerable at those times. We don’t know when the next natural disaster will strike, but we do know when the holidays will be upon us. The winter holiday season is…

News Letter | Security | Tips

Phishing Alerts — Fake Traffic Tickets & False Credit Union Messages

ByChad September 7, 2011

From the Desk of Chad M. Barr, CISSP, CISA, PCI QSA There have been a number of recent “phishing” campaigns, which are attempts by individuals or groups to solicit personal information from unsuspecting users by employing social engineering techniques. This month’s newsletter will focus on some of recent campaigns and provide guidance for protecting yourself…

Malware | Security News

The CDK Global Ransomware Attack: A Case Study in Supply Chain Disruption and Security Preparedness

ByChad July 23, 2024December 19, 2024

In June 2024, a ransomware attack targeting CDK Global, a major provider of dealership management software (DMS), sent shockwaves through the American automotive industry. The attack crippled the operations of approximately 15,000 car dealerships across the US, highlighting the critical role of technology in modern supply chains and the devastating consequences of cyberattacks. Immediate Impact…

Share this:

Like this:

Related

Discover more from

Disclaimer

Similar Posts

Share this:

Like this:

Share this:

Like this:

Share this:

Like this:

Share this:

Like this:

Share this:

Like this:

Share this:

Like this:

Share this:

Like this:

Share this:

Like this:

Share this:

Like this:

Share this:

Like this:

Share this:

Like this:

Share this:

Like this:

Share this:

Like this:

Share this:

Like this:

Share this:

Like this:

Share this:

Like this:

Share this:

Like this:

Share this:

Like this: