Kanishka NaikApr 21

PCI DSS is a global security standard that applies to any fintech handling payment card data. It defines 12 requirements covering data protection, access control, network security, and vulnerability management.

#Fintech #PCIDSS

sebsauvageApr 15

#banque #PCIDSS
Les banques : "On veut pas de TOTP, parceque c'est pas un code liรฉ ร  la transaction, alors on vous fourgue notre appli bancaire merdique connectรฉe pour valider un paiement."

Also les banques : "Le code de votre carte bancaire c'est 4 chiffres et รงa change jamais. "

MeysamMar 31

๐—š๐—ผ๐—ผ๐—ด๐—น๐—ฒ ๐—ฎ๐—ป๐—ฑ ๐—ฌ๐—ฎ๐—ต๐—ผ๐—ผ ๐—ฎ๐—ฟ๐—ฒ ๐—ฟ๐—ฒ๐—ท๐—ฒ๐—ฐ๐˜๐—ถ๐—ป๐—ด ๐˜‚๐—ป๐—ฎ๐˜‚๐˜๐—ต๐—ฒ๐—ป๐˜๐—ถ๐—ฐ๐—ฎ๐˜๐—ฒ๐—ฑ ๐—ฒ๐—บ๐—ฎ๐—ถ๐—น. ๐—œ๐˜€ ๐˜†๐—ผ๐˜‚๐—ฟ๐˜€ ๐—ป๐—ฒ๐˜…๐˜?

Not filter. Reject.

I scanned 5.5M domains.
Only 30.4% have a DMARC record.
Only 12.8% are at enforcement (p=quarantine or p=reject).

That means 87% of domains are exposed. Check yours in 10 seconds.

No signup required.
https://dmarcguard.io/tools/dmarc-checker/

#DMARC #EmailSecurity #PCIDSS #EmailCompliance

DMARC Record Checker | DMARCguard

Validate your DMARC policy and get actionable recommendations. All checks run in your browser -- nothing is sent to our servers.

DMARCguard
Outpost24Feb 27

Stay PCI DSSโ€“Compliant
๐Ÿ”ต ๐€๐ง๐ง๐ฎ๐š๐ฅ ๐๐‚๐ˆ ๐ƒ๐’๐’ ๐‚๐ก๐ž๐œ๐ค๐ฅ๐ข๐ฌ๐ญ: https://outpost24.com/blog/pci-dss-compliance-checklist/

#PCI #PCIDSS #PCICompliance #InfoSec #RiskManagement

Show threadDennyFeb 23

@xeraa Das Problem ist auch Graylog. Wir hรคngen an Graylog 6.0.14, weil das die letzte Version ist, die mit dem ELK 7.10 zusammenarbeitet. Fรผr Graylog 6.1 braucht es dann eine sehr aufwende ELK / OpenSearch Migration und die bringt Probleme mit sich. Mein Kollege kรถnnte da genaueres sagen .. aber es war etwas nicht triviales.

Man hat sich dazu entschieden, die Speicherdauer auf 3 Monate zu reduzieren, da unser Syslog (rsyslog) das ganze Jahr speichert, um den #pcidss #auditor glรผcklich zu machen.

Parallel wird geschaut, #victorialogs parallel laufen zu lassen, da der nur einen Bruchteil an Kapazitรคt in Anspruch nimmt.

Outpost24Dec 18

๐‚๐จ๐ฆ๐ฉ๐ฅ๐ข๐š๐ง๐œ๐ž ๐–๐ซ๐š๐ฉ๐ฉ๐ž๐ ๐”๐ฉ ๐๐ž๐Ÿ๐จ๐ซ๐ž ๐˜๐ž๐š๐ซ-๐„๐ง๐

If PCI compliance isnโ€™t complete, now is the time to close it.

Our team delivers fully managed PCI DSS scans in 24โ€“48 hours, designed for busy retail and ecommerce environments.

โŒ No last-minute chaos.
โŒ No January carry-over.

โœ… Get your PCI requirements done: https://outpost24.com/products/pci/

#PCIDSS #Compliance #ITSecurity #RiskManagement #GRC

Kyle Reddoch (CybersecKyle)Dec 9

GRC rarely feels like โ€œgovernance, risk, and complianceโ€ and more like alphabet soup with lawyers attached.

I wrote up how I approach GRC as an Associate CCISO: one risk-based program mapped to HIPAA, PCI DSS, NIST CSF, FTC Safeguards, and NIS2 instead of five separate nightmares.

๐Ÿ”— https://www.kylereddoch.me/blog/grc-in-the-real-world-making-hipaa-pci-nist-csf-ftc-safeguards-and-nis2-work-together/

#GRC #CyberSecurity #InfoSec #Compliance #HIPAA #PCIDSS #NISTCSF #NIS2

GRC In The Real World: Making HIPAA, PCI, NIST CSF, FTC Safeguards, and NIS2 Work Together

A practical guide to building one risk-based GRC program that satisfies HIPAA, PCI DSS, NIST CSF, FTC Safeguards, and NIS2 without drowning in duplicate work.

CybersecKyle
csDec 3

Chase account tells me that #Animoto is storing my payment card information despite me closing the account. I reached out to them, and they confirmed my account has been closed. That is NOT why I contacted them. I contacted them because my card company believes they are still holding onto my payment information. I do not know how they know that, but apparently they do, and it shows on the security page at Chase. Chase says they cannot remove it and I must contact the merchant.

#PCI #PCIDSS

LimaCharlieNov 12, 2025

PCI DSS 4.0 represents a philosophical shift from point-in-time validation to continuous, risk-based assurance.

Ready to operationalize compliance as a continuous practice?

Join us today at 10am PT / 1pm ET for a joint session with ControlCase and PCI DSS author Branden R. Williams.

In this webinar, we'll explore:

> The new compliance paradigm: Understanding the intent behind PCI DSS 4.0 changes and what continuous assurance means for your operations.

> Automation at scale: How to automate and scale assessment processes while maintaining control and visibility.

> Infrastructure for compliance: Using the SecOps Cloud Platform as your central compliance data layer with built-in retention, auditability, and integration capabilities.

> MSSP opportunities: How service providers can efficiently scale compliance services and create new revenue streams.

Learn how to build compliance operations that support business growth and trust.

Register now: https://limacharlie.wistia.com/live/events/nm3o9l8509?utm_campaign=pci+webinar+11+12+25&utm_source=mastodon&utm_medium=social

#cybersecurity #pcidss #compliance #secops

LimaCharlieNov 10, 2025

Two days until our PCI DSS 4.0 webinar with ControlCase and author Branden R. Williams.

Wednesday, November 12th at 10am PT / 1pm ET.

PCI DSS 4.0 is more than new requirements. It's a shift to continuous, risk-based security that creates opportunities for organizations that embrace it.

We'll cover:

> What's changed and why it matters
> How to interpret the intent behind the requirements
> Operationalizing continuous compliance
> Creating competitive advantages through automated assessment and enforcement

Designed for security engineers, compliance architects, and service providers building scalable compliance operations.

Last chance to register: https://limacharlie.wistia.com/live/events/nm3o9l8509?utm_campaign=pci+webinar+11+12+25&utm_source=mastodon&utm_medium=social

#cybersecurity #pcidss #compliance #secops