The Payment Card Industry Data Security Standard (PCI-DSS), the international body for card security, is working on updating security standards for card and mobile based payments in the wake of the pandemic as more people are working from home during the pandemic, senior executives at the Council told MediaNama in an interview. Lance Johnson, Executive Director, PCI Security Standards Council said that with the growing adoption of digital payments and organisations using cloud servers in the last year, this transition has come at a cost in terms of cyber security."The pandemic has highlighted the scale of criminal activities that were happening in the past, whether it is phishing or social engineering. Now that people working from home, they are are vulnerable for exploitation through these attacks," said Nitin Bhatnagar, Associate Director, PCI Security Standards Council. MediaNama: How has the pandemic changed the cyber security landscape? Lance Johnson: When there was a mass movement to work-from-home, the standards that would apply to these areas may have never been designed for a remote working scenario. With these changes in society we either have to evolve the standard or create a new standard. But standards are are only part of the issue, resiliency of the overall system and the security operations of organisations are also important. Ideally, standards need to be written flexibly with a view to the types of attacks, the standard should have resiliency Many of our historical requirements were based on physical cards and devices. But mobile has changed this.…
