News: Press Release   Blue Bamboo Pocket POS® Receives VISA PABP Compliance Validation   Las Vegas, Nevada – April 17th, 2008 - Blue Bamboo, an innovative provider of electronic payment solutions, announces today that its Pocket POS® suite of mobile payment applications has achieved compliance validation with VISA's Payment Application Best Practices (PABP). The built-for-purpose Blue Bamboo H50 Terminal as well as Blue Bamboo's Pocket POS® Mobile Merchant Solution is now available for deployment.   Developed by VISA, PABP assists software developers in creating secure payment applications and supports overall compliance with the PCI Data Security Standard (PCI DSS). The PABP applies to software vendors who develop payment applications that store, process or transmit cardholder data as part of authorization or settlement. PABP's onsite security review consists of 14 PABP requirements, including protection of card holder data, protection of wireless transmissions and encryption of sensitive data over public networks, and more.   Last fall, the PCI Security Standards Council announced adoption of Visa's PABP and this week released version 1.1 of the Payment Application Data Security Standard (PA-DSS). Blue Bamboo's Pocket POS® suite of applications are Java-based applets that run on traditional POS terminals and mobile cellular handsets, enabling mobile merchants to perform card-swipe transactions on a variety of devices, including a cell phone, Blackberry, PDA or laptop anytime, anywhere.   "Security and compliance is one our Company's core competencies and the PABP validation is critical for our mobile commerce segment", said Jason Jones, CEO of Blue Bamboo, "We are excited to have demonstrated our ability to meet this requirement as it helps our merchants further protect and grow their business."   Digital Resources Group (DRG), a leading information security assessment and data protection company for market leading businesses, performed the PABP validation.   "Attaining PABP compliance validation demonstrates to Blue Bamboo customers that cardholder data security is a top priority for market applications and products," said Jim Cowing, CISSP, QPASP and Managing Director of DRG. "Consumers are becoming more aware of headline security breaches and the risks of sharing personal data, Blue Bamboo is helping the mobile merchant provide secure transactions for its customers so they can be confident their information will be protected."   Blue Bamboo has also joined the PCI Security Standards Council as a new participating organization, working with the Council to evolve the PCI Data Security Standard (DSS) and other payment card data protection standards.   About Blue Bamboo Blue Bamboo designs and markets feature-rich and exceptionally affordable products for the POS terminal and peripherals industry. Blue Bamboo's robust electronic payment technology delivers scalable, customer-centric wireless and retail payment solutions which meet PCI and EMV standards all in a secure, reliable and versatile design. Visit www.bluebamboo.com or email sales@bluebamboo.com.   About Digital Resources Group Digital Resources Group (DRG), www.drgsf.com, founded in 1998, has been a leading information security assessment and data protection organization delivering quality security, audit, risk and controls services to market leading companies. DRG, a Qualified Security Assessor (QSA), Approved Scanning Vendor (ASV) and Qualified Payment Applications Security Company (QPASC), is a leader in payment card industry (PCI) security validation and compliance services. Endorsed by industry card associations, as well as leaders from financial services, healthcare, telecommunications, and government agencies, many businesses rely on DRG for valuable security expertise. The company provides a range of consultation and technical security support solutions that provide high-quality, full-service security assessment, remediation, implementation, incident response and related support services to help organizations maneuver through the complex and changing security challenges and compliance requirements of various industry sectors.