May 02, 2012

Global Payments working to again validate its PCI compliance

For the first time, breached processor Global Payments disclosed on Tuesday that a number of card brands have removed the company from their approved list of Payment Card Industry (PCI)-compliant service providers.

However, the Atlanta-based firm continues to process transactions for all of the major card brands as it seeks rejoin those lists, it said in an update.

Global Payments stands by its initial estimate that fewer than 1.5 million cards were impacted by the breach. However, it declined to provide any further details or a timeline of the attack.

"We identified and self-reported the incident in early March, and we will continue to provide information to the appropriate parties as revealed by the investigation," the company said.

A Visa spokesman on Wednesday sent SCMagazine.com a statement saying that it has asked Global Payments to re-validate its compliance to PCI by using a qualified security assessor, or QSA. Retailers that use the company's services will not be liable for penalties during that time.

A MasterCard spokesman did not respond to a request for comment.

Related Articles
Related Topics
Related Links

More in News

Privacy-bolstering "Apps Act" introduced in House

The bill would provide consumers nationwide with similar protections already enforced by a California law.

Microsoft readies permanent fix for Internet Explorer bug used in energy attacks

Microsoft is prepping a whopper of a security update that will close 33 vulnerabilities, likely including an Internet Explorer (IE) flaw that has been used in targeted website attacks against the U.S. government.

Weakness in Adobe ColdFusion allowed court hackers access to 160K SSNs

Up to 160,000 Social Security numbers and one million driver's license numbers may have been accessed by intruders.