Target Breach Lesson: PCI Compliance Isn't Enough"Target was certified as meeting the standard for the payment card industry in September 2013. Nonetheless, we suffered a data breach." Those words by Target CEO Gregg Steinhafel affirmed what security experts know as gospel: Compliance does not equal security. "Just because you pass a PCI audit does not mean that you're secure," said HyTrust President Eric Chiu.
Source:
Target Breach Lesson: PCI Compliance Isn't Enough
