Updates to PCI DSS Standards Effective Soon
FINANCIAL PRIVACY—U.S.June 29, 2012
Network World reports on modifications to the Payment Card Industry Data Security Standards, effective at the end of the month. The most significant change is a new requirement for "risk rankings to vulnerabilities," the report states, which means any business "dependent on processing customer debit and credit card information must now be able to show they are not only aware of known vulnerabilities but can demonstrate that they have a process for ranking them according to risks to their own systems and software." One expert described the updates as an "evolution of the requirements."