The PCI Security Standards Council has no plans to modify its standards for payment card data security in response to high-profile payment card breaches at Target and Neiman Marcus, says Bob Russo, the council's general manager.
They're thought-leaders. Movers and shakers. VIPs and MVPs within their industry sectors. And their actions weigh heavily on how information security is practiced, taught and tested. These are 2014's Influencers.
The breach at Target Corp. that compromised as many as 40 million payment card accounts, along with the personal information of about 70 million customers, was the result of hackers stealing electronic credentials from a vendor, the retailer reports.
Retail data breaches are growing. ISight Partners' Tiffany Jones, a researcher who helped the Department of Homeland Security prepare its report about malware attacks, offers new insight into the latest cyber-attacks.
While details surrounding a suspected breach at Michaels remain unclear, two U.S. card issuers say they believe the retailer was targeted by point-of-sale malware similar to what compromised Target and Neiman Marcus.
Representatives of the American Bankers Association, the National Retail Federation and the PCI Security Standards Council are among those slated to testify at a Feb. 3 Senate hearing on safeguarding consumers' financial data.
Arts and crafts retailer Michaels is looking into a possible data breach that may have led to fraudulent activity on U.S. payment cards. But experts disagree about whether there's a connection to the Target and Neiman Marcus attacks.
Cybercriminals exploiting weaknesses in how users employ passwords is a significant factor behind an increase in records exposed in breaches during 2013, says Craig Spiezle of the Online Trust Alliance.