Fake analytics that steal more than your credit card
FAKE ANALYTICS THAT STEAL MORE THAN YOUR CREDIT CARD Attackers discovered a clever way to turn a trusted e-commerce script into an identity theft engine,
5 Reasons to Act on PCI 4.0 Now
People who watched this webinar were also interested in
[Whitepaper] Third Party Digital Supply Chain Risk: Exposing the Shadow Code on Your Web Properties
The modern website has a 3rd party digital supply chain of its own. These partners play a critical role in user experience, in site performance, in analytics and in driving improved conversion rates.
They also introduce security and compliance risks that are too often overlooked when considering 3rd party risk management and adherence to strict data privacy mandates such as GDPR.
If your organization conducts transactions or collects sensitive data online, you need to consider your web properties a critical focal area of 3rd party risk management. If you are bound by compliance programs such as a PCI DSS – you’re now guided to focus on the client-side threat introduced by your digital supply chain.
Other things you might be interested in
PCI DSS 4.0.1: When eSkimming Compliance Creates a False Sense of Security
by Source Defense PCI DSS 4.0.1 was supposed to close the gap on eSkimming. The extended deadline for the new eSkimming controls came and went
Fake Stripe forms show why payment providers can’t protect real shopper
FAKE STRIPE FORMS SHOW WHY PAYMENT PROVIDERS CAN’T PROTECT REAL SHOPPERS Attackers found a way to turn Stripe’s trusted checkout into a fake, look-alike experience that
Next-gen magecart: two websockets, fake checkout, silent skimming via GTM
NEXT-GEN MAGECART: TWO WEBSOCKETS, FAKE CHECKOUT, SILENT SKIMMER VIA GTM Attackers found a clever way to steal payment and personal data by hiding inside a