Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email firstname.lastname@example.org
From: B.K. DeLong (bkdelongpobox.com)
Date: Thu Sep 27 2007 - 15:50:15 CDT
On 9/27/07, James Ritchie, CISA, QSA <james_ritchiesbcglobal.net> wrote:
> Knowing what the PCI SSC has fined companies that are in
> non-compliance to the DSS is really not needed. Those that are found
> non-compliant will have some business drivers that are going to affect
> them. The fines that are levied effect the business bottom line. If
> they have lost their processing would severely handicapped earning
> potentials, effect the wallet of the management, and could be driven
> out of business. Divulging who these companies would affect their
> integrity and reputation if released, thus causing loss of business.
Very valid points. I'm not necessarily looking to out an organization
who has not already been the public victim of a security breach but
rather take many of the existing data loss examples in the Data Loss
Database and find out what the related PCI Co actions against the
Yet another valuable data point - especially for other companies and
organizations that fall as merchants subject to the PCI DSS.
B.K. DeLong (K3GRN)
38D4 D4D4 5819 8667 DFD5 A62D AF61 15FF 297D 67FE
Dataloss Mailing List (datalossattrition.org)
Tenable Network Security offers data leakage and compliance monitoring
solutions for large and small networks. Scan your network and monitor your
traffic to find the data needing protection before it leaks out!