The Better Business Bureau of Minnesota and North Dakota and the Minnesota Cyber Crime Task Force are urging all small businesses with outdated or lacking online security software to be aware of foreign hackers stealing credit-card information and then selling it on the web.
Businesses targeted by these cyber intrusions could be liable for any losses involving stolen credit-card data, which could potentially bankrupt smaller enterprises. All small businesses that process, store or transmit credit-card information are advised to bring up to date their security software and become PCI compliant immediately.
The Payment Card Industry Data Security Standard is a set of requirements designed to ensure all companies that deal with credit-card information maintain a secure environment. Although the PCI is not law, it was created by major credit-card brands that at their discretion can fine merchants that do not comply with Payment Card Industry Data Security Standards in case of a data breach.