Like many credit and debit card acquirers, when Tesco Bank’s fraud system detects what it thinks is a fraudulent transaction on a cardholder’s account it sends the customer an SMS saying “please contact the bank”. It’s pretty obvious that it doesn’t have any sort of velocity
I’ve read some pretty amazing articles and blogs in the last week that show quite a misunderstanding about how criminals steal money, how payments work and how the new General Data Protection Regulation would both punish Tesco Bank and simultaneously remedy all ills. Cyber security and financial crime is
I put together this series of sample PCIP questions and answers to help a friend who was revising for her PCIP exam. She passed and so I hope you also find them useful. It is a while since I actually took a PCI SSC exam and so these questions might
A recording was made of the webcast I made of the my 2016 RSA Presentation How to Explain Cybersecurity to the Board Using a Simple Metaphor: FIRE. The sound quality isn’t great but I’m pretty pleased with how it turned out.
It is rare for the DSS to get smaller, each version typically adds a few requirements based on lessons from forensic investigations of breaches of cardholder data. However, in the summary of changes from version 3.1 to version 3.2 published this week I noticed: <br><
I’m John Elliott, a data protection specialist and Pluralsight author. I help organisations balance regulatory requirements like GDPR, NISD, PSD2 and the PCI standards with IT, information security and business objectives. More …
Get in touch with me:
Pluralsight are making all of their video courses and more FREE for the month of April. This will of course give you free access to my courses, listed below:
… it’s a metaphor for our industry. The saying goes that there’s no smoke without fire. In information security and data protection we can often smell the smoke but we choose to optimistically believe that there’s isn’t a fire, or perhaps we’ll be lucky and not get burnt. This generally isn’t a great idea.