TMCnet News
61% of Merchants Still Store Unencrypted Payment Card DataOREM, Utah, Feb. 9, 2016 /PRNewswire/ -- Businesses continue to struggle with the prohibited storage of unencrypted customer payment data. In its fifth study on unencrypted card data, SecurityMetrics' patented card discovery tool PANscan® found that 61% of businesses store the unencrypted 16-digit sequence on the front of credit cards, also known as the Primary Account Number (PAN). In the Payment Card Industry Data Security Standard (PCI DSS) 3.0, merchants are instructed that, "Protection methods such as encryption, truncation, masking, and hashing are critical components of cardholder data protection" in PCI DSS Requirement 3. And yet in six years, PANscan has found more than 1.4 billion unencrypted card numbers on business networks. Fortunately, in the past few years, the amount of merchants storing unencrypted card data has gone down from 63% to 61%. Te study revealed that PANscan scanned 276,584 GB of data on 4,703 computers and found:
"The trend is encouraging in general, but there is still a long way to go," said Bill Davis, Director of Product Management at SecurityMetrics. "It surprises me that track data continues to be a problem. That's the Holy Grail for hackers." Card data discovery tools like PANscan simplify the process of identifying and directing users to unencrypted card data. View the infographic (http://info.securitymetrics.com/whats-causing-you-to-store-unencrypted-payment-cards) to learn more about the study, or contact a SecurityMetrics representative at [email protected] or 801.705.5665 to learn more about PANscan. About SecurityMetrics (www.securitymetrics.com) If you have any questions, contact us at [email protected]. Logo - http://photos.prnewswire.com/prnh/20140225/SF71790LOGO
To view the original version on PR Newswire, visit:http://www.prnewswire.com/news-releases/61-of-merchants-still-store-unencrypted-payment-card-data-300217085.html SOURCE SecurityMetrics |