Wendy's Recahes Settlement from 2015 + 2016 Data Breach

U.S. fast food restaurant chain Wendy’s announced recently that it has reached a settlement with the thousands of financial institutions impacted by the data breach suffered by the company in 2015 and 2016. The case clearly demonstrates how cybersecurity and information protection go far beyond compliance with regulations and standards.

Wendy's, like any other organization that processes payment cards, came under the purview of the Payment Card Industry Data Security Standard (PCI DSS) and would have been required to undertake several measures for data protection. And yet, it suffered a data breach of this magnitude. Clearly, an information asset-centric cybersecurity strategy is the way forward for organizations rather than solely a compliance-centric one.

Read More

Stop Phishing Attacks with ERMProtect's Security Awareness Training

Turn your employees into a human firewall with our innovative Security Awareness Training.

Our e-learning modules take the boring out of security training.

ERMProtect's Weekly Newsletter

Get a curated briefing of the week's biggest cyber news every Friday.

Intelligence and Insights

Boost Business Value

From Compliance to Advantage: Using PCI 4.0 Certification to Boost Business Value

In this comprehensive guide, we explain in simple terms every aspect of complying with the NIST Cybersecurity Framework 2.0 …
financial institutions

5 Major Cybersecurity Risks Banks and Financial Organizations Face

In this article, we outline some of the most common cybersecurity attacks that banks and financial institutions can be vulnerable to …
How Merchants Can Become PCI-DSS Certified

Follow These 4 Steps to Achieve PCI DSS Certification

For all organizations that process payment cards, the Payment Card Industry Data Security Standard (PCI-DSS) certification is high up the data security and compliance priority list …