New Breed of Magecart: GTMs Working Together, JavaScript Hidden in CSS
by Source Defense The Source Defense Research team has uncovered another active eSkimming campaign which demonstrates the use of novel techniques, and an increasing adversarial
A 90-Day Action Plan for 6.4.3 and 11.6.1
DOWNLOAD the 90-Day Action Plan Here
Zero to Compliance: The Source Defense Method
There are more than 50 new requirements in PCI DSS 4.0. That’s a lot to worry about and a lot to get ready for in just a short period of time. Realistically, with an impending Q4 code-freeze, you have the next six months to tackle it all.
The eSkimming security controls required under 6.4.3 and 11.6.1 should be at the TOP of your list. The good news is that you can get these changes out of the way inside 90 days if you get working on an action plan this quarter!
Source Defense protects more than 1,000 of the world’s leading brands, our solution has been reviewed by CoalFire and VikingCloud, it is trusted by hundreds of the world’s QSACs and it was purpose-built to be easy to test, rapid to deploy, cost-effective and virtually management free.
[DOWNLOAD IT HERE]
Other things you might be interested in
What QSAs Are Saying About PCI DSS 4.0.1 and eSkimming Controls
by Source Defense On a recent Source Defense roundtable, seasoned QSAs gathered to discuss the latest PCI DSS 4.0.1 updates—specifically requirements 6.4.3 and 11.6.1—and how
Client-Side Security Breach Alert: Blue Shield of California Exposes 4.7 Million Members’ Health Data Through Web Analytics Configuration
by Source Defense A recent incident at Blue Shield of California highlights the critical importance of client-side security controls when implementing third-party scripts on healthcare
New Magecart Variant Targets UK Retailer in Stealthy Double-Entry Attack
Source Defense Research Blog | April 23, 2025 A Familiar Threat Resurfaces in the UK Our Source Defense Research team has uncovered an active Magecart-style
