PCI Mobile Payment Acceptance Security Guidelines target software developers and mobile device manufacturers with guidance on how to design appropriate security controls that can thwart growing threats such as malware and rootkits. The council focused on two key objectives: securing the payments transaction itself and best practices for securing the supporting environment around it, says Troy Leach, the Council’s CTO. Leach led the incident-response program at American Express, where he reviewed more than 300 cases of account data compromises. The PCI Security Standards Council will continually review and update its guidance.”]
Source: https://www.bankinfosecurity.com/inside-pcis-mobile-payments-guidance-a-5199