< All PCI/DSS Notes

superleethacker | PCI/DSS | PCI/DSS

By: superleethacker | Related Course: PCI/DSS | Published: January 15, 2017 | Modified: January 15, 2017
Join Cybrary

NotepadPCI DSS #1

### Payment Card Industry Data Security Standard

the standard includes 12 requirements for any business that stores, processes or transmits payment cardholder data

### Where is data vulnerable?

– data in a payment system database
– compromised card readers and POS systems
– Paper records improperly stored
– Hidden camera recording entry of authentication data
– Secret tap into your stores wireless or wired network
– ATMs modified to contain software or hardware shims
– Residual information in RAM of systems that accept payment card information (RAM scraping)
– EVERYWHERE!!!


NotepadPCI DSS #2

Primary Account Number PAN

Risk Management
Risk Assessment
Risk Analysis – qualitative and quantitative
Risk Event

When you’re storing this information you become a target


< All PCI/DSS Notes
Join Cybrary

Our Revolution

We believe Cyber Security training should be free, for everyone, FOREVER. Everyone, everywhere, deserves the OPPORTUNITY to learn, begin and grow a career in this fascinating field. Therefore, Cybrary is a free community where people, companies and training come together to give everyone the ability to collaborate in an open source way that is revolutionizing the cyber security educational experience.

Cybrary On The Go

Get the Cybrary app for Android for online and offline viewing of our lessons.

Get it on Google Play
 

Support Cybrary

Donate Here to Get This Month's Donor Badge

 
Skip to toolbar

We recommend always using caution when following any link

Are you sure you want to continue?

Continue
Cancel