eSkimming Security vs. eSkimming Compliance: Unfortunately, There Is a World of Difference
by Source Defense In 2025, the digital storefront remains a prime target for attackers, and the battle against eSkimming, the theft of customer data directly
Webinar Replay: 2024 Verizon Payment Security Report
Download the CoalFire whitepaper below
[Whitepaper] CoalFire Provides Guidance on PCI DSS 6.4.3 and 11.6.1
Guidance from CoalFire on the eSkimming Security requirements found in PCI DSS 4.0.
The most talked about and concerning new requirements in PCI DSS 4.0 fall under sections 6.4.3 and 11.6.1. For the first time, merchants are required to implement security controls to prevent eSkimming attacks. These new requirements require control of all scripts running on merchant eCommerce websites.
In this new whitepaper “A Holistic Approach to Protecting Credit Card Payment Flows,” CoalFire chimes in with background on the problem, guidance on scope, advice on how best to secure credit card data in eCommerce transactions, and a review of the Source Defense approach.
Other things you might be interested in
Beyond Compliance: What QSAs Need to Ask Clients About PCI DSS 6.4.3 and 11.6.1 in 2025
by Source Defense As PCI DSS 4.0.1 assessments become the new normal, Qualified Security Assessors (QSAs) face a pivotal role in ensuring merchants move beyond
Source Defense: The Standard-Bearer in eSkimming Security
by Source Defense In the ever-evolving landscape of digital commerce, the rise of eSkimming has become one of the most critical threats facing the global
Invisible Risk: The Hidden Data Leaks in Your Web Front End
by Source Defense When your organization builds or manages web experiences that handle patient, customer, or policyholder data, you are also managing risk, often more