, , , , , , ,

Don't let your antiquated OS keep you from PCI DSS compliance.

Don’t let your antiquated OS keep you from PCI DSS compliance.

As it turns out, you can learn a lot about the tech-industry from your non tech-savvy parents.  It’s true.

Recently I had a debate with my Dad—who fits firmly into the recently-retired-baby-boomer demographic—about his incessant use of the uber-outdated Windows XP OS.

My key argument—the shear speed or lack thereof—wasn’t making much of a dent in my Father’s philosophy.  I suppose for the pink-socks-and-jorts clad clan, speed is not a top priority.

However, once I hit upon the news that End-of-Life (EOL) operating systems (OS) were nearing not just extinction but code compliance issues—I now held the narrative to get Dad back to the 21st Century.

PCI DSS Code Compliance

Many businesses feel that being PCI DSS compliant means only having the right FIM in place to protect their clients’ data that is stored via a POS. Whereas this is a huge part of compliance, it is overlooking some other key areas where breaches might be imminent.

Since Windows XP is about to reach it’s very own Enders Game i.e. End-of-Life (EOD) this means that not only will use of this platform fall to the wayside, but for those that refuse upgrades, they may find themselves facing heavy fines from PCI DSS.

How can an OS be non-compliant?

PCI DSS v6.1 has many advanced stipulations included within.  One of which announces that all systems MUST be protected from all know vulnerabilities.

For example, since Windows XP is quite antiquated, it as easy target for hackers since it does not contain the necessary measures to protect against constantly-upgrading intruders.

If your business is using an outdated OS, your company is using a padlock to prevent data theft in a world that has upgraded to retinal scanners.

Is Your Business at Risk?

The three major business sectors affected are Health care, federal governments, and financial services. However, this does not mean that your company is in the clear.

Smaller companies are especially at risk no matter which sector their business performs in.  The smaller the company the more likely that an outdated mode of operation is still in force.

Plain and simple, PCI DSS is here to protect your company from data loss and identity theft. And this is a fact that not only hits home with all businesses, but might just help you convince your parents to say no Windows XP and upgrade accordingly—but save the pink-socks-and-jorts debate for another day.

EzFIM—Elite Compliance at a fraction of the cost

Don’t let the fear of excessive cost or lack of knowledge thwart you from becoming code compliant.  Contact an EzFIM representative today to learn more about protecting your customers from fraud.  Call us today at: (855) 393-4666, or email us at: info@ezfim.com