Latest news with #PCIDSS


Cision Canada
2 days ago
- Business
- Cision Canada
BingX PCI DSS Certification Sets New Benchmark for Data Security in Web3
PANAMA CITY, Aug. 14, 2025 /CNW/ -- BingX, a leading cryptocurrency exchange and Web3 AI company, has successfully attained Payment Card Industry Data Security Standard (PCI DSS) v4.0.1 certification for its fiat business, marking a significant milestone in its mission to protect data privacy and security. BingX is among the first cryptocurrency exchanges worldwide to earn this recognition, underscoring its leadership in applying global security standards to the Web3 space. Maintained by the PCI Security Standards Council — founded by Visa, Mastercard, American Express, Discover, and JCB — PCI DSS v4.0.1 sets rigorous requirements for safeguarding sensitive payment data during storage, transmission, and processing. The certification affirms BingX's compliance across six key security domains — including network security, vulnerability management, data protection, access control, monitoring, and information security strategy. For BingX users, this means an increasingly secure environment for fiat deposits and card payments, ensuring safe and uninterrupted payment channels. Daniel Lai, Chief Business Officer at BingX, commented: "Security has always been at the heart of BingX's operations. Achieving PCI DSS v4.0.1 certification is more than a compliance milestone — it is a commitment to our users that every transaction is handled with the highest global security standards. As digital asset and fiat rails converge, safeguarding users through rigorous protections is not optional — it is core to our mission at BingX." This certification builds on BingX's comprehensive security framework, which includes industry-leading AML systems to block illicit funds, regular Proof of Reserves for full asset transparency, real-time monitoring and alerts for suspicious account activity, abnormal withdrawal reviews, and the $150M self-funded Shield Fund for incident protection. Combined with external audits by partners, regular system updates, advanced encryption and authentication technologies, and partnerships with top security experts, BingX continues to strengthen its platform — uniting globally recognized security standards like PCI DSS with proactive safeguards to ensure a secure, transparent, and user-first trading environment. About BingX Founded in 2018, BingX is a leading crypto exchange and Web3 AI company, serving a global community of over 20 million users. With a comprehensive suite of AI-powered products and services, including derivatives, spot trading, and copy trading, BingX caters to the evolving needs of users across all experience levels, from beginners to professionals. Committed to building a trustworthy and intelligent trading platform, BingX empowers users with innovative tools designed to enhance performance and confidence. In 2024, BingX proudly became the official crypto exchange partner of Chelsea Football Club, marking an exciting debut in the world of sports sponsorship.


Time Business News
3 days ago
- Business
- Time Business News
cardable website
In the underground world of cybercrime, certain terms have become part of the dark web's vocabulary. One such term is 'cardable website' — a phrase often discussed in the same breath as 'Verified Carders Shop CVV Fullz Bank Logins EMV Software Dumps+Pin Leaked Database ATM Skimmers Cash App PayPal Bank Transfer and much more.' While it may sound technical, a cardable website simply refers to an online store or platform that criminals believe can be exploited for purchases using stolen payment information. Understanding this concept is crucial for anyone who shops online or runs an e-commerce business. A cardable website is not a legitimate service, nor is it a term used in any lawful business. Instead, it is a label given by cybercriminals to sites they believe can be tricked into accepting fraudulent transactions without proper verification. Criminals operating on carding forums or black-market communities often compile lists of such sites, claiming they can be 'carded' successfully with stolen: CVV codes – Security numbers from credit or debit cards. – Security numbers from credit or debit cards. Fullz data – Complete sets of personal and banking details. – Complete sets of personal and banking details. Bank logins – Credentials for direct account access. – Credentials for direct account access. PayPal and Cash App accounts – Digital wallet information for unauthorized transfers. – Digital wallet information for unauthorized transfers. Dumps + PINs – Magnetic stripe data and ATM PIN numbers for cloning cards. Cardable websites are not inherently criminal — many are legitimate businesses — but vulnerabilities in their payment systems can be abused. Here's how the exploitation process works in the criminal world: Finding a Target – Fraudsters share or sell lists of supposed 'cardable' sites on underground forums. Testing Stolen Data – They attempt small purchases using stolen credit card numbers to see if the site's security will flag it. Scaling Up – If successful, larger and more expensive items may be purchased and shipped to drop addresses or intermediaries. Covering Tracks – Transactions are routed through VPNs, proxies, or the Tor network to hide the perpetrator's identity. These actions are illegal and carry severe criminal penalties, but the term 'cardable website' persists as a coded way for criminals to discuss potential targets. For online merchants, unknowingly being labeled a 'cardable website' can be disastrous. It means their platform is seen as vulnerable, which may lead to: Increased chargebacks from fraudulent transactions. from fraudulent transactions. Loss of trust from customers whose data may be compromised. from customers whose data may be compromised. Legal liability if security standards like PCI DSS are not followed. if security standards like PCI DSS are not followed. Targeted attacks from organized fraud groups. Even if you've never heard the term before, your financial information could still be targeted by criminals exploiting cardable websites. Here are key safety measures: Use secure payment methods – Credit cards often have better fraud protection than debit cards. – Credit cards often have better fraud protection than debit cards. Enable transaction alerts – Many banks and payment apps allow instant notifications for purchases. – Many banks and payment apps allow instant notifications for purchases. Avoid storing card details on multiple websites. on multiple websites. Check for HTTPS – Ensure websites use SSL encryption before entering payment information. – Ensure websites use SSL encryption before entering payment information. Monitor accounts regularly – Early detection of suspicious activity can limit losses. E-commerce owners can take steps to protect both themselves and their customers: Implement strong fraud detection systems that flag unusual orders. that flag unusual orders. Use AVS (Address Verification System) and CVV checks for all card transactions. and CVV checks for all card transactions. Adopt 3D Secure authentication for added security. for added security. Regularly update and patch e-commerce software to close vulnerabilities. e-commerce software to close vulnerabilities. Conduct penetration testing to find weaknesses before criminals do. Authorities worldwide, including the FBI, Europol, and Interpol, monitor cybercrime networks for illegal activity involving cardable websites. Many high-profile cases have shown that: Lists of 'cardable websites' often serve as evidence in criminal trials. Undercover agents infiltrate carding forums to track down offenders. Entire networks promoting fraudulent purchases have been dismantled. Phrases like 'Verified Carders Shop CVV Fullz Bank Logins EMV Software Dumps+Pin Leaked Database ATM Skimmers Cash App PayPal Bank Transfer and much more' are used in the criminal underground as marketing hooks. They promise illegal goods and services to potential buyers — but in reality, they're not only illegal, they're also rife with scams where criminals steal from each other. No matter how 'verified' they claim to be, engaging with these marketplaces can lead to arrest, financial loss, and reputational damage. A cardable website is not something you want to be associated with — whether you're a consumer or a business owner. For shoppers, it's a reminder to remain vigilant when entering payment details online. For businesses, it's a warning to invest in strong fraud prevention and cybersecurity measures. By understanding how criminals misuse the concept, we can reduce the opportunities for fraud and keep the digital marketplace safer for everyone. TIME BUSINESS NEWS


NDTV
6 days ago
- Business
- NDTV
SISA Launches AI-Driven StackSQ At NASSCOM Conclave
SISA has launched AI-driven StackSQ at the two-day NASSCOM Future Forge conclave in Bengaluru. The launch was led by NASSCOM's AI lead Ankit Bose. StackSQ has been developed as SISA's response to this growing challenge of software risk. "Solutions like SISA StackSQ-combining privacy-first design with AI-driven intelligence, are critical to enabling compliance without slowing innovation. They reflect the kind of forward-looking, quantum-ready capabilities India needs to strengthen digital trust and global competitiveness," said Nasscom's AI Head, Ankit Bose. Speaking at the launch, Dharshan Shanthamurthy, Founder and CEO of SISA, reflected on the platform's mission. "In our forensics work, we have seen how breaches often trace back to what no one was looking at - whether it is an unnoticed dependency, a forgotten crypto library, or a small component with big consequences. StackSQ is our response to that blind spot. We built it to help organisations see deeply, act quickly, and stay ready for whatever comes next. Just as importantly, we designed it to integrate seamlessly with existing tech stacks. StackSQ supports all major programming languages, frameworks, and package managers, making it effortless to embed into modern development environments." StackSQ's privacy-first architecture enables deep, AI-driven analysis of software components while preserving the sanctity of proprietary code. It offers unprecedented visibility into an enterprise's codebase without ever accessing the source code. What makes StackSQ timely and essential is its alignment with the rapidly evolving regulatory landscape. With CERT-In, SEBI, PCI DSS, and FIPS 140-2 tightening mandates around software bill of materials and cryptographic safety, organisations in finance, defence, and government are under growing pressure to demonstrate not just awareness, but readiness. StackSQ rises to this challenge through its integrated SBOM (Software Bill of Materials), CBOM (Cryptographic BOM), and QBOM (Quantum BOM) capabilities, ensuring vulnerability management, cryptographic safety, and quantum readiness in a single platform. This trinity forms the heart of StackSQ's proposition: one platform, three lenses, total visibility. The launch comes at a time when the software supply chain is increasingly being weaponised. Attackers log in, exploiting vulnerable packages, misused libraries, or outdated cryptographic standards buried deep within builds. StackSQ doesn't just flag these risks but anticipates them. It's AI-powered risk intelligence assistant enables security teams to query potential threats in natural language and receive contextual, prioritised responses along with recommended remediation paths. In addition, it offers combined with flexible deployment models across SaaS, on-premises, and hybrid environments, and adapts to the way software is built today - fast, distributed, and deeply interdependent. StackSQ also marks a pivotal evolution in SISA's journey, from a compliance partner to a trusted enabler of digital trust. In a world where what lies inside your software may matter more than what's on the surface, StackSQ reimagines security intelligence for the CISO, the developer, and the regulator alike.


Business Wire
29-07-2025
- Business
- Business Wire
PCI Pal Launches Fraud Management Suite to Strengthen Contact Center Security
CHARLOTTE, N.C.--(BUSINESS WIRE)--PCI Pal ® (LON: PCIP) today announced the launch of its new Fraud Management Suite, beginning with AI-powered risk scoring for customer engagements. Designed to protect against rising card-not-present (CNP) fraud, the new capability delivers real-time risk insights to agents and AI bots before a payment is collected — reducing chargebacks and revenue loss without adding friction to the customer experience. 'AI is transforming how we approach security — not just in detecting fraud, but in anticipating it." Share CNP fraud remains one of the most costly threats for global businesses. While e-commerce channels benefit from tools like 3D Secure and biometric authentication, the voice channel — still central to many contact centers — has lacked equivalent protection. PCI Pal is closing that gap with a platform-led approach that combines security, compliance, and usability. 'This is the first step in a multi-product journey to deliver continuous value to our customers and partners,' said Alessandro Dalla Volta, VP of Product at PCI Pal. 'By embedding risk scoring into our Secure Payments Suite via an intuitive agent interface and a single API, we're giving contact centers powerful tools to detect fraud early and authenticate their customers seamlessly — across agents and bots using digital channels as needed.' A Smarter Way to Fight Fraud The new Fraud Management Suite helps organizations respond to evolving threats with: Real-time AI-powered risk scoring leveraging technology for early fraud detection in partnership with Telesign, a Proximus Global company Adaptive authentication, including 3D Secure and biometric wallet support Advanced analytics and chargeback defense tools Built for the Modern Contact Center 'AI is transforming how we approach security — not just in detecting fraud, but in anticipating it,' said Mufti Monim, CTO of PCI Pal. 'This launch lays the groundwork for a more intelligent and adaptive platform, that secures payments across all channels while enhancing both customer and agent experiences. It's the first step in a broader roadmap to unify fraud prevention, compliance, and customer experience into one seamless, scalable platform.' Availability AI-powered risk scoring is now available as part of the PCI Pal platform. Learn more at About PCI Pal PCI Pal ® (LON: PCIP) is a leading provider of secure payment solutions for business communications. PCI Pal's mission is to safeguard reputations and trust by securing payments wherever customer engagement occurs. With its patented, cloud-based platform, PCI Pal enables organizations to take secure payments via voice, chat, email, and social, while ensuring compliance with industry standards such as PCI DSS. For more information, visit

Business Insider
23-07-2025
- Business
- Business Insider
Profee plans to capture up to 20% of the money transfer market by 2026
Industry insights show Ghana as one of the fastest growing money transfer markets in Africa. Riding the trend with innovative and cost-efficient solutions for Ghanaian expats in Europe, plans to be performing 20% of all money transfers online by 2026 thanks to several crucial advantages. According to World Bank data, in 2024 Ghana emerged as one of the top recipients in Africa with inward remittances reaching $4.6 billion, or 6.2% of GDP – almost twice as much as in 2023 ($2.4 billion). The Bank of Ghana reports even higher numbers: $6.7 billion vs $5.1 billion. Moreover, some industry analysts estimate the size of the national money transfer market exceeding $11 billion in 2024. 'We see a massive shift happening in the remittance space. Ghana's digital adoption is accelerating, and we're building a service that meets the needs of today's mobile-first users. By 2026, our goal is clear: to handle every fifth money transfer from Europe to Ghana via Profee — securely, instantly, and at the best possible rate.' — Dmitrii Gorokh, Head of Brand & Marketing Communications at Profee. Due to substantial amounts of money flowing into the country through unofficial channels, providing remittance market statistics is a challenge. But even the lowest estimates indicate the importance of international money transfers for the Ghanaian economy. Building upon these developments, the Profee's goals and vision as a digital remittance leader with a 20% share of the money transfer market, are shaped by the following strengths. Top-tier security. With the rapid online money app growth worldwide and in Africa, the issue of security comes to the forefront. Profee money transfers are protected by the state-of-the-art technology and procedures compliant with regulatory and industry requirements. A trusted remittance partner, the company uses multi-level procedures for transaction monitoring, employs advanced data encryption, and regularly updates its PCI DSS certification. Low cost. The UN's financial inclusion goals call for a reduction of the cost of international money transfers to 3% by 2030, but current average rates for Africa are still more than twice as high as that. For Ghana, the situation is currently exacerbated by the cedi appreciation which reduces the value of inward remittances. Leading the digital payments adoption, Profee understands the importance of accessible money transfers online for the Ghanaian market and acts accordingly. Its dynamic AI-driven market monitoring system allows its customers to enjoy the most competitive currency exchange rates on the market at any given moment. In addition, the first Profee money transfer comes with no commission and at a special promo exchange rate, thus stimulating the growth in digital transfers. Instant delivery. Regardless of the sender's location or currency, Profee money transfers are delivered almost instantly. Maximum convenience. The future of online remittances and any other digital B2C services depends on convenience. Seamless, customer friendly processes translate into high retention rates. A Profee money transfer only requires a connected smartphone and takes several taps to send. Transactions can be performed from the comfort of one's home, office, or even on the go and at any time of the day. Aiming to lead the remittance disruption, the company offers a selection of payment methods including bank cards and Google Pay and Apple Pay. To sign up with Profee, one only needs to visit or download the iOS/Android app and provide basic personal details with no excessive bureaucracy. As the above overview shows, the Profee's expansion plans have a solid foundation. Ghanaian expats in Europe appreciate its innovative and customer-oriented approach, which makes the Profee's market share target of 20% easily achievable. About Profee An EU-licensed fintech company, Profee offers fast and secure online money transfers across 90+ destinations worldwide. The company continues to deliver exceptional year-on-year growth in both customer base and revenue, driven by bold innovation and cutting-edge financial technology. Recognised as the Best International Money Transfer Solution 2024 by Acquisition International's Global Excellence Awards, Profee combines the highest security and efficiency with the most competitive rates and low fees, making it a go-to remittance solution for Europe-based expats.