How QSAs Can Better Communicate the Growing eSkimming Threat to Clients
by Source Defense Qualified Security Assessors play a critical role in helping organizations understand and meet PCI requirements. Yet when it comes to eSkimming, many
Webinar Replay: Community Enablement
Download the CoalFire whitepaper below
[Whitepaper] CoalFire Provides Guidance on PCI DSS 6.4.3 and 11.6.1
Guidance from CoalFire on the eSkimming Security requirements found in PCI DSS 4.0.
The most talked about and concerning new requirements in PCI DSS 4.0 fall under sections 6.4.3 and 11.6.1. For the first time, merchants are required to implement security controls to prevent eSkimming attacks. These new requirements require control of all scripts running on merchant eCommerce websites.
In this new whitepaper “A Holistic Approach to Protecting Credit Card Payment Flows,” CoalFire chimes in with background on the problem, guidance on scope, advice on how best to secure credit card data in eCommerce transactions, and a review of the Source Defense approach.
Other things you might be interested in
The Evolution of eSkimming: Why Attackers No Longer Need Your Payment Page
by Source Defense For years, organizations have treated eSkimming as a narrowly defined threat. The assumption was simple: attackers want credit card data, so they
Smarter, evolving skimmers turn ‘safe’ magento checkouts & GTM into a blind spot
SMARTER, EVOLVING SKIMMERS TURN ‘SAFE’ MAGENTO CHECKOUTS & GTM INTO A BLIND SPOT Attackers are now using increasingly sophisticated, layered techniques to skim Magento checkout
The Real Risks of Relying on Developers for Website Script Governance
by Source Defense For many organizations, website script governance has become an accidental responsibility rather than an intentional one. As websites have grown more complex,