Another massive retailer has been hacked, and information on millions of credit cards appears to have been stolen. Read the story at USA Today. This breach follows 2013’s attack on Target, which industry experts suggest could have easily been prevented.
The good news is that your organization isn’t nearly as tempting for hackers as big fish like Home Depot and Target. The bad news is that you probably don’t have the internal IT security teams of these corporations, and you’re much less likely to bounce back from a devastating security breach.
If you accept credit and debit cards for payment, you are required to be PCI (Payment Card Industry) compliant as part of your merchant agreement. You can find more information on PCI compliance at the PCI Security Standards Council web site.
However, if you don’t feel confident in your technical ability to reach and maintain compliance, be sure to get qualified IT security assistance. It’s like your mother always said: an ounce of prevention is worth a million stolen credit cards.