The PCI Dream Team Discusses PCI DSS 4.0 and Payment Page Security
Last week Source Defense gathered hundreds of the world’s largest merchants, Payment Service Providers, QSACs and Card Associations to hear from a prominent group of leading thinkers in compliance and data security standards to talk about the upcoming deadline and changes to PCI DSS 4.0. The post The PCI Dream ... Read More
Silent Skimmer: The Rising Threat in Card-Skimming Attacks
A notorious Chinese-speaking threat actor, known for skimming credit card numbers off e-commerce sites and point-of-sale service providers across Asia/Pacific, has expanded its target scope to North and Latin America. The post Silent Skimmer: The Rising Threat in Card-Skimming Attacks appeared first on Source Defense ... Read More
Source Defense Research Uncovers a Series of Sophisticated Magecart Attacks
Learn about the recent discovery of a sophisticated series of Magecart attacks by the Source Defense research team and how cybercriminals are targeting online payment data. Discover attack vectors and potential prevention strategies to protect your business from similar threats. The post Source Defense Research Uncovers a Series of Sophisticated ... Read More
How to Stop Magecart Attacks and Save Your Business
In 2022, a staggering 60 million payment card records were put up for sale on the dark web. Of these, 45.6 million were obtained through card-not-present transactions, meaning they were stolen during online purchases. The post How to Stop Magecart Attacks and Save Your Business appeared first on Source Defense ... Read More
Protecting eCommerce & Retail Sites from Client-Side Attacks
Nearly 75% of fraud and data breach cases involve eCommerce and retail merchants, according to the latest Visa Biannual Threats Report. Digital skimming attacks targeting eCommerce platforms and third-party code integrations are common. The post Protecting eCommerce & Retail Sites from Client-Side Attacks appeared first on Source Defense ... Read More
Latest Verizon Data Breach Report: Retail is an Easy Target for Web Application Attacks
The theft of payment card data from retail organizations is on the rise, with 18 percent of breaches attributable to Magecart attacks, according to Verizon's 2023 Data Breach Investigations Report (DBIR) released June 6. The post Latest Verizon Data Breach Report: Retail is an Easy Target for Web Application Attacks ... Read More
Our Gift to the Community – FREE Platform for addressing the web security requirements in PCI DSS 4.0
Some things in security and compliance should be easy. Furthermore, if we truly want to fulfill our collective mission of protecting the world’s organizations and the customers they serve from harm, some things should also be given to the community for FREE. That’s why I’m immensely proud to announce the ... Read More
Protecting eCommerce & Retail Sites from Client-Side Attacks
Almost all eCommerce websites leverage a dozen or more 3rd and 4th party digital supply chain partners that are beyond the reach of their security and compliance teams. Every day, that digital partner ecosystem puts eCommerce organizations at risk of both data leakage and data theft. The post Protecting eCommerce ... Read More
Magecart/eSkimming Attack Using Kritec Skimmer Creates the Perfectly Hijacked Checkout Page
The Kritec skimmer operates by intercepting the checkout process during online purchases. After a customer enters their payment details, the skimmer simulates a fake payment dialog, giving the impression that the payment has been processed. It then displays a fake error message, redirecting the victim to the actual payment page ... Read More
In-Store Versus Online: How Well Do You Know Your Security?
Retail stores often have visible security measures in place, such as security cameras and personnel monitoring. However, online stores have a security gap as they are vulnerable to cyberattacks, data breaches, and fraud. This security gap poses a significant challenge to e-commerce companies and requires robust cybersecurity measures to ensure ... Read More
