Wendy's Recahes Settlement from 2015 + 2016 Data Breach

U.S. fast food restaurant chain Wendy’s announced recently that it has reached a settlement with the thousands of financial institutions impacted by the data breach suffered by the company in 2015 and 2016. The case clearly demonstrates how cybersecurity and information protection go far beyond compliance with regulations and standards.

Wendy's, like any other organization that processes payment cards, came under the purview of the Payment Card Industry Data Security Standard (PCI DSS) and would have been required to undertake several measures for data protection. And yet, it suffered a data breach of this magnitude. Clearly, an information asset-centric cybersecurity strategy is the way forward for organizations rather than solely a compliance-centric one.

Read More

Stop Phishing Attacks with ERMProtect's Security Awareness Training

Turn your employees into a human firewall with our innovative Security Awareness Training.

Our e-learning modules take the boring out of security training.

ERMProtect's Weekly Newsletter

Get a curated briefing of the week's biggest cyber news every Friday.

Intelligence and Insights

PCI compliance companies

Leaning on PCI Compliance Companies to Navigate the Maze of PCI Compliance

These cases demonstrate the critical role of PCI compliance companies in helping businesses not only recover from breaches but also prevent future incidents through rigorous compliance practices …
PCI QSA Companies

Selecting the Right PCI QSA Company

The right PCI QSA company should act as a trusted advisor, helping to identify vulnerabilities and suggesting improvements to secure data and comply with PCI DSS requirements …
New York Cybersecurity Regulation

Tough New Amendments to New York Cybersecurity Regulation Kick in Soon

Entities must take proactive steps to assess their compliance with the amended Cybersecurity Regulation and rapidly work to address any gaps …