November 20, 2024 at 08:52AM Cybercriminals are exploiting a technique known as Ghost Tap, using near-field communication (NFC) to fraudulently withdraw funds from stolen credit cards linked to mobile payment services like Google Pay and Apple Pay. This method allows transactions without the physical card or phone, complicating detection for financial institutions and retailers. ### … Read more
September 16, 2024 at 08:21AM Rapidly evolving PCI DSS landscape with v4.0 introduces rigorous requirements, particularly sections 6.4.3 and 11.6.1, necessitating strict monitoring and management of payment page scripts. Reflectiz offers a dedicated PCI dashboard with real-time, remote visibility, script-level monitoring, and a smart approval mechanism, ensuring efficient compliance and reduced risks. Access a 30-day … Read more
August 19, 2024 at 09:36PM Academic security researchers found critical flaws in digital wallets like Apple Pay, Google Pay, and PayPal, allowing attackers to use stolen and canceled payment cards for unauthorized purchases. By exploiting weaknesses in authentication and security mechanisms, attackers can add stolen cards to their digital wallets and make unauthorized transactions, regardless … Read more
April 26, 2024 at 01:07AM The PCI Security Standards Council is expanding its role to the Middle East in response to the rising volume of card-based payments and payment-card fraud in the region. With a focus on improving security, the council will collaborate with organizations involved in the payment ecosystem. These efforts come amidst a … Read more
March 11, 2024 at 04:36PM Compliance is crucial for security professionals, with many standards evolving to resemble security best practices. PCI DSS 4.0, applicable to all businesses accepting credit card payments, introduces new requirements such as preventing malicious scripts, enhancing network security controls, securing systems and software, and ensuring robust logging and monitoring. These updates … Read more