Another random #pcidsscompliance thought. You cannot successfully argue that your vulnerability scanning solution is out of scope if it scans CDE systems and contains information about the vulnerabilities of such systems. Also, if you perform internal authenticated scans (which you do, right?), this system has stored creds for CDE systems.

Cybercriminals Fill Up on Gas Pump Transaction Scams Ahead of Oct. Deadline - Gas stations will become liable for card-skimming at their pay-at-the-pump mechanisms starting in ... more: https://threatpost.com/cybercriminals-fill-up-gas-pump-transactions/151520/ #cardskimmingattacks #oct.2020deadline #pcidsscompliance #payatthepump #paymentcards #pointofsale #chipandpin #gasstation #liability #breach #hacks #emv