Language Selection

English French German Italian Portuguese Spanish

Web shops face tighter security

Filed under
Security

From 30 June this year all web shops will have to comply with strict security standards drawn up by the world's big credit card companies.

Online shops will be certified annually and checked quarterly to ensure they maintain the security standards.

Websites which flout the rules could be banned from trading or left to soak up the costs of break-ins all by themselves.

The move to tighten up security at online shops happens as increasing numbers of firms report that customer data has been lost or stolen.

In February the Bank of America said it had lost more than 1.2 million customer records - though it said there was no evidence that the data had fallen into the hands of criminals.

More recently LexisNexis, ChoicePoint and HSBC have all revealed that data about customers has been lost to attack by criminal hackers.

It is estimated that this year alone more than 2 million customer records have gone missing or been stolen.

In an attempt to raise the baseline security practices of online merchants and payment processing firms, Mastercard, Visa, American Express, Diners, Discover, and JCB have drawn up standards that dictate what web shops must do to keep safe.

Before these standards were drawn up separate credit card firms and banks had their own different security compliance programs.

All web shops that process more than 20,000 transactions per year will have to comply with the PCI standards no matter where they are in the world. This means that tens of thousands of web shops will have to become compliant with the new rules.

The standards go as far as to dictate what length passwords must be, how often they must be changed and force firms to be very careful with credit card information and who gets access to it.

Full Story.

More in Tux Machines

Special Exclusive: Q&A with Joyent CEO Scott Hammond

So far, we have utilized open source as a model to innovate quickly and engage with customers and a broad developer community. SmartOS and Node.js are open source projects we have run for a number of years. In November of last year we went all in when we open sourced two of the systems at Joyent’s core: SmartDataCenter and Manta Object Storage Service. The unifying technology beneath both SmartDataCenter and Manta is OS-based virtualization and we believe open sourcing both systems is a way to broaden the community around the systems and advance the adoption of OS-based virtualization industry-wide. Read more

EXT4 Updates Are Pretty Boring For Linux 4.3

The EXT4 file-system updates have been sent in for the Linux 4.3 kernel. There isn't much to the EXT4 updates for Linux 4.3 besides clean-ups and fixes. Ted Ts'o wrote in the pull request, "Pretty much all bug fixes and clean ups for 4.3, after a lot of features and other churn going into 4.2." Read more

Jonathan Riddell Mocks Canonical with His Own Intellectual Property Policy

In some more relaxing news, Jonathan Riddell, leader of the Kubuntu Linux distribution, has had the great pleasure of announcing his own IP (Intellectual Property) policy, mocking Canonical's. Read more Original: Jonathan Riddell™ IP Policy

Debian-Based Robolinux Xfce 8.1 OS Lets You Run Windows 10 in Stealth VM

The development team behind the Robolinux project announced earlier today, September 3, the immediate availability for download of their brand new Robolinux Xfce 8.1 "Raptor" Linux distribution. Read more