[ISN] Heartland Payment Systems' PCI Compliance Is Reinstated

From: InfoSec News <alerts_at_private>
Date: Wed, 6 May 2009 01:03:34 -0500 (CDT)
http://www.darkreading.com/security/perimeter/showArticle.jhtml?articleID=217201395

By Tim Wilson
DarkReading
May 04, 2009 

Heartland Payment Systems, which exposed the personal information of 
millions of credit card customers in a major data breach last year, has 
been given its PCI compliance back.

Visa, which decertified the then-compliant Heartland following its 2008 
breach, will list the payment service provider as compliant when it 
posts its new Payment Card Industry Data Security Standard (PCI DSS) 
list today, according to a notice posted on Heartland's breach site.

"Heartland Payment Systems has successfully validated its compliance 
with PCI DSS," the notice says.

Many of Heartland's customers had expressed concern that the payment 
services provider's decertification would jeopardize their own PCI 
compliance. Heartland had been certified as compliant when the breach 
occurred.

[...]


--
LayerOne 2009, Information Security for the discerning professional. 
May 23-24 2009 @ The Anaheim Marriott in Anaheim, California 
Visit http://layerone.info for more information
Received on Tue May 05 2009 - 23:03:34 PDT

This archive was generated by hypermail 2.2.0 : Tue May 05 2009 - 23:13:03 PDT