PCI DSS v4.0

AI Principles: Securing the Use of AI in Payment Environments

AndyC 12 September 2025

Artificial intelligence (AI) systems are increasingly being used within businesses to help in the creation, management, and operation of payment...

Beware of PCI DSS Compliance Certificates 

AndyC 5 September 2025

The PCI Security Standards Council (PCI SSC) is often asked whether compliance certificates are acceptable to demonstrate an organization’s validation...

Beware of PCI DSS Compliance Certificates 

AndyC 5 September 2025

The PCI Security Standards Council (PCI SSC) is often asked whether compliance certificates are acceptable to demonstrate an organization’s validation...

New Guidance: Integrating Artificial Intelligence into PCI Assessments

Recent Recommendations: Embedding Artificial Intelligence into PCI Evaluations

AndyC 7 April 2025

Artificial intelligence (AI) is reshaping various sectors, and the PCI Security Standards Council (PCI SSC) has unveiled recent recommendations to...

Novel Directions: Embedding Artificial Intelligence into PCI Evaluations

AndyC 7 April 2025

Artificial intelligence (AI) is revolutionizing various sectors, and the PCI Security Standards Council (PCI SSC) has released fresh guidelines to...

FAQ Clarifies New SAQ A Eligibility Criteria for E-Commerce Merchants

Information on Recent SAQ A Requirements for Online Sellers

AndyC 3 March 2025

A new Frequently Asked Question (FAQ) has been released by the PCI Security Standards Council (PCI SSC) to address the...

Important Updates Announced for Merchants Validating to Self-Assessment Questionnaire A

Exciting Updates Shared for Retailers Confirming to Self-Examination Questionnaire A

AndyC 3 March 2025

As a result of feedback from involved parties about the challenges of implementing the fresh e-commerce security Specifications 6.4.3 and...

New Guidance Coming for E-commerce Security Requirements in PCI DSS v4.x

AndyC 10 December 2024

The PCI Security Standards Council (PCI SSC) is developing guidance to help stakeholders understand and implement the new e-commerce security...

Resource Guide: Vulnerability Scans and Approved Scanning Vendors

Resource Handbook: Vulnerability Scans and Certified Scanning Vendors

AndyC 24 July 2024

The PCI Data Security Standard (PCI DSS) has always contained provisions for external vulnerability assessments carried out by PCI Certified...

Guide for Resources: Scans for Vulnerabilities and Certified Scanners

AndyC 24 July 2024

The Standard for Data Security in Payment Card Industry (PCI DSS) has for a long time specified the necessity of...

Directory of Vulnerability Checks and Certified Inspection Providers

AndyC 24 July 2024

Up until now, the PCI Data Security Standard (PCI DSS) has always contained criteria for external vulnerability inspections carried out...

Recently Released: PCI DSS v4.0.1

AndyC 12 June 2024

In response to feedback and inquiries from stakeholders following the publication of PCI DSS v4.0 in March 2022, the PCI...

PCI DSS v4.0

AI Principles: Securing the Use of AI in Payment Environments

Beware of PCI DSS Compliance Certificates

Beware of PCI DSS Compliance Certificates

Recent Recommendations: Embedding Artificial Intelligence into PCI Evaluations

Novel Directions: Embedding Artificial Intelligence into PCI Evaluations

Information on Recent SAQ A Requirements for Online Sellers

Exciting Updates Shared for Retailers Confirming to Self-Examination Questionnaire A

New Guidance Coming for E-commerce Security Requirements in PCI DSS v4.x

Resource Handbook: Vulnerability Scans and Certified Scanning Vendors

Guide for Resources: Scans for Vulnerabilities and Certified Scanners

Directory of Vulnerability Checks and Certified Inspection Providers

Recently Released: PCI DSS v4.0.1

LongNosedGoblin tries to sniff out governmental affairs in Southeast Asia and Japan

ESET Threat Report H2 2025

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Donate Bitcoin to this address

Donate Ethereum to this address

Russia was behind a destructive cyber attack on a water utility in 2024, Denmark says

Russia-Linked Hackers Use Microsoft 365 Device Code Phishing for Account Takeovers

Microsoft 365 accounts targeted in wave of OAuth phishing attacks

State-linked and criminal hackers use device code phishing against M365 users

Three ways teams can tackle Iran’s tangled web of state-sponsored espionage

Donate Bitcoin to this address

Donate Ethereum to this address

You may have missed