15 min read
This Week's [in]Security - Issue 227
Welcome to This Week’s [in]Security. Community Meeting, Featured FAQs, PCI, MageCart, & JavaScript, Python PyPI library skimmer, Payment APIs. New...
8 min read
The DSS, MageCart, and the DOM – Part 3 e-Commerce Skimming
Cyberattacks and data breaches have risen dramatically in recent years and no industry or organization is immune to these attacks. Merchants,...
6 min read
The DSS, MageCart, and the DOM – Part 2 Browsers, the DOM, and 3rd Party JavaScript
In part two of our series, we take a deeper dive into how JavaScript works and its implications to web and e-commerce security and compliance. This...
8 min read
The DSS, MageCart, and the DOM – Part 1: The PCI DSS e-Commerce Rules
It turns out that how you implement e-commerce can have a huge impact on your compliance footprint (i.e., the number of PCI security controls...
15 min read
This Week's [in]Security - Issue 226
Welcome to This Week’s [in]Security. Union Pay and PCI, New FAQ, Magecart. UI Rant. New breaches, New Ransomware: Ports. Blood Services, gangs....
17 min read
This Week's [in]Security - Issue 225
Welcome to This Week’s [in]Security. Card Production, Data Removal, Digesting PCI, Issuers. Fingerprint cards. New breaches: Saudi Aramco, Mexican...
5 min read
Why do some Issuers believe they don’t need to be PCI DSS compliant?
Documents from the PCI Council, MasterCard, and Visa clearly indicate that Issuers are required to be PCI DSS compliant (see Learn More below). Yet...
6 min read
6 Ways to Deal with the Magnitude of PCI DSS
Are you new to PCI DSS? Perhaps you need to refresh your approach? If so, this article breaks down 6 strategies that will help you eat the proverbial...
17 min read
This Week's [in]Security - Issue 224
Welcome to This Week’s [in]Security. Major-events: REvil goes dark, Kaseya. New breaches: Guess. New Ransomware: EA, D-Box, Campbell Conroy & O'Neil,...