The Payment Card Industry Security Standard Council issues the PCI DSS framework to provide standards and requirements for merchants accepting payment cards and ultimately to secure consumers and their payment data. However, there is a specific and critical stage in the payment lifecycle currently absent from this framework: data creation. Websites are now a primary and growing entry/creation point for payment data.
Concerningly, due to a universal flaw in the construction of nearly every website, data is left exposed to multiple unauthorized external entities and for hackers to exploit their access. Because this flaw is universal, the attack vector is actively being exploited such that nearly 5,000 websites per month are victimized.
Download white paper to learn about: