79% of businesses rated as PCI-compliant fell out of compliance over the course of the year. In other words, their information security and risk management practices got worse.[informationweek.com]