As the world of cybersecurity changes, businesses and assessors are exploring exciting new technologies to stay in line with industry standards. Integrating Artificial Intelligence (AI) into Payment Card Industry (PCI) assessments is one innovation. The new guidelines from the PCI Security Standards Council (PCI SSC) provide a clear and secure way to weave AI into…
As the world celebrates St. Patrick’s Day, it’s a time to think about shamrocks, green attire, and a little Irish luck. But when it comes to cybersecurity, relying on luck is the last thing you want to do. Whether you’re a seasoned cybersecurity professional or just someone looking to keep your data safe, it’s important…
In today’s rapidly evolving digital landscape, the Chief Information Security Officer (CISO) role has never been more critical! Did you know that over 60% of organizations have experienced cyber breaches in the past year? This alarming statistic underscores the need for skilled leaders who can navigate the complexities of cybersecurity. A successful CISO is not…
The digital landscape is rapidly evolving, driven by groundbreaking advancements in artificial intelligence (AI). Among these, generative AI is a transformative technology reshaping how information is created, modified, and distributed. As we explore the intersection of generative AI and cybersecurity, it is crucial to understand the foundational concepts of each and the dynamic interplay that…
In the wake of the proliferation of generative AI technologies, the cybersecurity landscape finds itself at a critical juncture, navigating the emergence of novel threats and the imperative to fortify defenses against AI-powered attacks. This chapter delves into the dynamic interplay between generative AI-powered threats and the evolving strategies for cybersecurity defense, shedding light on…
When most people think about disruption in business and technology, they imagine breakthrough innovations and radical new ideas. However, after spending three decades helping companies navigate the intersection of innovation and regulation, I’ve learned that successful disruption isn’t just about breaking things – it’s about breaking things responsibly. Let me share a story that really…
Generative AI is reshaping the cybersecurity landscape, enabling sophisticated threats while prompting innovative defensive measures. This reimagining of threats demands a nuanced understanding of the challenges and opportunities generative AI introduces. Below is a refined exploration of this evolving domain. Unveiling the Threat Landscape: Generative AI in Cybersecurity Generative AI-Powered Threats Generative AI’s ability to…
The Payment Card Industry Data Security Standard (PCI DSS) has established rigorous requirements to safeguard sensitive cardholder data and ensure the security of payment systems globally. Among these standards is the PCI Approved Scanning Vendor (ASV) Program, which is vital in identifying and addressing vulnerabilities in external-facing systems. This blog explores the PCI ASV Program,…
With several new PCI DSS v4.0.1 requirements set to take effect on April 1, 2025, two requirements—4.2.1.1 and 12.3.3—have generated significant attention and questions. Let’s begin by reviewing the text of these requirements: The Relationship Between 4.2.1.1 and 12.3.3 Requirement 12.3.3 is a broad, comprehensive requirement encompassing all cryptographic use cases, including those covered under…
The movement of money from physical to digital has revolutionized how we bank and shop. However, this shift has also attracted criminals, replacing traditional heists with sophisticated digital thefts. Data is as valuable as money in today’s economy, making nearly every business a potential target for digital skimming attacks. From customer lists and payroll information…
