One of the work streams the Secure Payments Task Force focused on was working to improve the awareness and implementation of cybersecurity and fraud information sharing among U.S. payment industry participants. The task force compiled the following list of data sources that highlights broad-reaching intelligence reports, payments fraud trends, best practices and benchmarks, and additional resources that can help your organization address payments fraud risk.  For example, financial institutions can leverage timely and actionable reports highlighting payments fraud incidents and cybersecurity threats occurring across the payments industry. Merchants and other business end-users can leverage best practices and benchmarks to help protect them from data breaches and fraud attacks.

The list will be periodically updated based on the availability of new data sources and the payments security threat landscape. Please note that this list is for informational purposes and was not intended as an endorsement by the Secure Payments Task Force or any member thereof.

How can my organization get added to the list?

Organizations with relevant services may submit a request to be added to the list using the Provide Feedback form.  Examples of relevant services include: cybersecurity and fraud prevention services that highlight intelligence reports, payments fraud trends, and best practices and/or benchmarks. Upon submitting the request you will receive a confirmation email requesting additional information.

Use the filters below to find data sources that could benefit your organization; more information about the filters can be found here (PDF). A full, printable version of the data sources is also available for download (PDF).

You are not required to enter a value in all filter options. Selecting a filter will narrow the returned results. (Ex. “All” filters will return results that generally apply across all payment types and/or participants)

Note: Results returned for a particular payment type(s) also include those data sources applicable to all payment types (these sources contain information pertinent to the selected payment type(s)).

National Cyber Security Alliance

http://staysafeonline.org/

The National Cyber Security Alliance (NCSA) builds strong public/private partnerships to create and implement broad-reaching education and awareness efforts to empower users at home, work and school with the information they need to keep themselves, their organizations, their systems and their sensitive information safe and secure online and encourage a culture of cybersecurity.

  • All Payment Types
  • All Payment Participants
  • Freely Available
  • General

National Cyber-Forensics and Training Alliance (NCFTA)

https://www.ncfta.net/

The National Cyber-Forensics and Training Alliance (NCFTA) is a non-profit, public/private partnership conducting real-time, two-way information sharing and analysis to identify, mitigate, and disrupt cyber and cyber-enabled crimes. Active participants include cross-sector industry partners, law enforcement, and academia in the U.S. and globally. Other information shared includes data feeds, intelligence reports, best practices, and trend reporting.

  • All Payment Types
  • All Payment Participants
  • Simple Subscription
  • General

National Cybersecurity Center of Excellence (NCCoE)

https://nccoe.nist.gov/

The National Cybersecurity Center of Excellence (NCCoE), a part of the National Institute of Standards and Technology (NIST), is a collaborative hub where industry organizations, government agencies, and academic institutions work together to address businesses’ most pressing cybersecurity issues. This public-private partnership enables the creation of practical cybersecurity solutions for specific industries, as well as for broad, cross-sector technology challenges. Through consortia under Cooperative Research and Development Agreements (CRADAs), including technology partners—from Fortune 50 market leaders to smaller companies specializing in IT security—the NCCoE applies standards and best practices to develop modular, easily adaptable example cybersecurity solutions using commercially available technology. The NCCoE documents these example solutions in the NIST Special Publication 1800 series, which maps capabilities to the NIST Cyber Security Framework and details the steps needed for another entity to recreate the example solution.

  • All Payment Types
  • All Payment Participants
  • Simple Subscription
  • General

National Grocers Association (NGA)

http://www.nationalgrocers.org

The National Grocers Association (NGA) is the national trade association representing the retail and wholesale grocers that comprise the independent sector of the food distribution industry. Also represented are affiliated associations, manufacturers, and service suppliers, as well as other entrepreneurial companies that support NGA’s mission and philosophy.

NGA Mission – To ensure independent, community-focused retailers and wholesalers the opportunity to succeed and better serve the consumer through its policies, advocacy, programs and services.

NGA Philosophy – To promote diversity in the marketplace through a vibrant independent sector, and thereby increase consumer choice in price, variety, quality, service, and value.

  • All Payment Types
  • Business End Users/Merchants/Retailers
  • Membership Subscription
  • General

National Retail Federation (NRF)

https://nrf.com/

The National Retail Federation (NRF) is the world’s largest retail trade association, representing discount and department stores, home goods and specialty stores, Main Street merchants, grocers, wholesalers, chain restaurants and internet retailers from the United States and more than 45 countries. Retail is the nation’s largest private sector employer, supporting one in four U.S. jobs – 42 million working Americans. Contributing $2.6 trillion to annual GDP, retail is a daily barometer for the nation’s economy.

  • All Payment Types
  • Business End Users/Merchants/Retailers
  • Membership Subscription
  • General

Office of Foreign Asset and Control (OFAC)

https://www.treasury.gov/resource-center/sanctions/SDN-List/Pages/default.aspx

Used by businesses to ensure compliance with the U.S. Department of the Treasury requirements related to foreign commerce. The Office of Foreign Assets Control (OFAC) of the U.S. Department of the Treasury administers and enforces economic and trade sanctions based on U.S. foreign policy and national security goals against targeted foreign countries and regimes, terrorists, international narcotics traffickers, those engaged in activities related to the proliferation of weapons of mass destruction, and other threats to the national security, foreign policy or economy of the United ​States.

  • All Payment Types
  • All Payment Participants
  • Freely Available
  • Both General and Transactional

Office of the Comptroller of the Currency (OCC)

https://www.occ.gov/index.html

The Office of the Comptroller of the Currency (OCC) charters, regulates, and supervises all national banks and federal savings associations as well as federal branches and agencies of foreign banks. The OCC is an independent bureau of the U.S. Department of the Treasury. The OCC’s mission is to ensure that national banks and federal savings associations operate in a safe and sound manner, provide fair access to financial services, treat customers fairly, and comply with applicable laws and regulations.

  • All Payment Types
  • Financial Institutions
  • Freely Available
  • General

Payment Card Networks (Visa, American Express, Discover)

https://usa.visa.com/

https://www.discovernetwork.com/en-us/

https://www.americanexpress.com/

Payment brands offer a variety of services for their issuers which may include notification of potentially exposed accounts (as result of known or suspected data compromise), notifications of fraud trends and transaction monitoring, alerting, and blocking services.

  • Credit / Debit
  • Financial Institutions
  • Membership Subscription
  • Both General and Transactional

Payment Card Networks (Visa, American Express, Discover)

https://usa.visa.com/

https://www.discovernetwork.com/en-us/

https://www.americanexpress.com/

Payment brands may offer services for merchants directly or through the merchant’s acquirer which may include notification of fraudulent transactions, notifications of fraud trends and fraud alerting services.

  • Credit / Debit
  • Business End Users/Merchants/Retailers
  • Membership Subscription
  • Both General and Transactional

PCI Security Standards Council

https://www.pcisecuritystandards.org

The PCI Security Standards Council is a global forum for the industry to come together to develop, enhance, disseminate and assist with the understanding of security standards for payment account security.

The Council maintains, evolves, and promotes the Payment Card Industry Security Standards. It also provides critical tools needed for implementation of the standards such as assessment and scanning qualifications, self-assessment questionnaires, training and education, and product certification programs.

  • Credit / Debit
  • All Payment Participants
  • Freely Available
  • Both General and Transactional
Last Updated On: December 5, 2018

Notice: ob_end_flush(): failed to send buffer of zlib output compression (0) in /home/radar/public_html/securepaymentstaskforce.org/wp-includes/functions.php on line 5107