On 16 January 2014 18:44, <[email protected]> wrote: > Bonus points for finding a standard that provides enough *actual* security > that it is worth doing, but yet won't bankrupt the industry. Consider that > of all the credit-card breaches we've seen so far this century, something > outrageous like 97% of the victim companies had current audits that listed > them as being 100% PCI compliant at the time of the incident. >
This is obvious troll bait, you know very well that PCI compliance has very little to do with security and is a mechanism for payment companies to transfer their risk to merchants. ;) D. Daniël W. Crompton <[email protected]> <http://specialbrands.net/> <http://specialbrands.net/> http://specialbrands.net/ <http://twitter.com/webhat> <http://www.facebook.com/webhat><http://plancast.com/webhat><http://www.linkedin.com/in/redhat>
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
