Security Weekly Podcast Network (Video)
Technology
Version 4.0 of the Payment Card Industry Data Security Standard (PCI DSS) puts greater emphasis on application security than did previous versions of the standard. It also adds a new “customized approach” option that allows merchants and other entities to come up with their own ways to comply with requirements, and which also has implications for application security. Specifically, PCI DSS 4.0 requires that by March 31, 2025, more testing of public-facing applications related to payment processing or other activities be considered “in scope” for compliance. Generally, any system that touches payment-card data is in scope for PCI DSS compliance, whether or not the system or function is public-facing. We'll talk through what organizations should have gotten done by March 31, 2024, and what needs to happen by March 31, 2025.
Segment Resources: https://info.obsglobal.com/pci-4.0-resources
Show Notes: https://securityweekly.com/psw-825
Easy Passwords, BIG-IP, Ascension, Lockbit, Google, Poland, ZScaler, Aaran Leyland... - SWN #385
Automated Pentesting, AI in SecOps, & AI-Powered Analytics - Jason Keirstead, Jay Mar-Tang, Anthony Aurigemma - ESW #361
Phishing Attacks Increase, Network Transformation, & Unified SASE as a Service - Deepen Desai, Renuka Nadkarni, Tim Roddy - ESW #361
Next Gen Threats, CTEM Essentials, & Proactive MDR - Randy Watkins, Paul Reid, Zaira Pirzada - ESW #361
Hacker Heroes - Jeremiah Grossman - PSW #828
Corporate Ransomware Deep Dive - Mikko Hypponen - PSW #828
Tetris, APT42, Kimsuky, Android, ChatRTX, MITRE, Computer Dating, Josh Marpet, More - SWN #384
Hacking AI Bias with Human Techniques - Keith Hoodlet - ASW #284
AI & Hype & Security (Oh My!) - Caleb Sima - ASW #284
Say Easy, Do Hard - Train How You Fight, Part 2 - BSW #349
Say Easy, Do Hard - Train How You Fight, Part 1 - BSW #349
Weird Al, Docker, OT, Gitlab, Credit Monitoring, Dropbox, Cisco, AI, Aaran Leyland... - SWN #383
RSA Conference, Verizon DBIR, funding, reports, partnerships and more - ESW #360
Preparation: The Less Shiny Side of Incident Response - Joe Gross - ESW #360
ChatGPT Writes Exploits - PSW #827
Kicking Off With Crypto - PSW #827
Random Problems, Protecting Packages, and Vulns in Designs, Defaults & Data Leaks - ASW #283
AI, Okta, Chrome, Quantum, Kaiser Permanente, FTC, FCC, NCSC, Josh Marpet, and more. - SWN #382
Why Companies Continue to Struggle with Supply Chain Security - Melinda Marks - ASW #283
Board's Pivotal Role in Cybersecurity as CISO-CEO Communication Gaps Continue - BSW #348
Create your
podcast in
minutes
It is Free
Insight Story: Tech Trends Unpacked
Zero-Shot
Fast Forward by Tomorrow Unlocked: Tech past, tech future
The Unbelivable Truth - Series 1 - 26 including specials and pilot
Darknet Diaries