PCI North America Community Meeting

New PCI DSS Requirements add complexity

At the PCI North America Community Meeting, we spoke with industry experts about breaking down the challenges of building in-house solutions and why third-party tools can be the smarter choice.

Cybersecurity is a community effort

At Source Defense, we believe that protecting online commerce from threats like eSkimming requires all of us—merchants, QSAs, and solution providers—working together.

QSAs give their insights into PCI DSS 4.0

QSAs discuss the pitfalls of relying on Content Security Policy (CSP) or Subresource Integrity (SRI) and explores how dynamic scripts can make these approaches a dead end. 

About Source Defense

As a PCI Participating Organization and the pioneer in eSkimming security, Source Defense played a role in the development of new requirements for web security found in PCI DSS 4.0.

We’ve helped thousands of the world’s leading brands address these issues. We’ve also been educating merchants, QSAs, PSPs, eCommerce Platform providers and virtually every stakeholder in PCI compliance on the vulnerabilities in modern website design that make eSkimming attacks possible. We’ve made it our misison to provide guidance around ambiguity in the standard; advise on the pros and cons of approaches provided by the council and we recently launched a free assessment, monitoring and management solution for both merchants and their QSAs. 

Scroll