Tag : PCI DSS

PCI compliance

PCI Compliance for Version 3.2: FAQs and To-do’s

Aug 03, 2016 By Paul Curran | As families all across America dress up and trickle into the streets for trick-or-treating on October 31st, 2016, there is one more ghost that will be vanishing into the chilly, autumn air at midnight: PCI DSS version 3.1.
Since the introduction of PCI DSS 3.2 in April 2016, organizations have been working hard to ensure that they’re compliant with these new standards put forth by Payment Card Industry Security Standards Council (PCI SSC).   What threats to the payment card industry prompted this incremental update and what new protections will version 3.2 contain?

</Read More>
Identity Theft

All You Wanted To Know About Identity Theft

Aug 05, 2015 By Sharon Solomon | With the internet revolution in full swing, web and mobile applications are extracting more and more private information from us. While this is definitely making life easier and enhancing our productivity, large databases of Personally Identifiable Information (PII) are left exposed due to lack of security awareness and/or vulnerable applications. Identity Theft has become a common occurrence in today’s cyberspace, making it important for organizations to understand the nature of the risks and eliminate them before it’s too late.

</Read More>
Logo

PCI DSS Compliance Made Easy Using Source Code Analysis

May 05, 2015 By Sharon Solomon | The e-commerce and retail fields have undergone mammoth changes over the last decade. Paying in hard cash has almost become a thing of the past. Credit and debit cards are now being used to conduct millions of transactions and e-shopping purchases on a daily basis worldwide. But this new reality has also introduced numerous security perils.  

</Read More>

What’s HOT in Application Security Vol #15

Jun 11, 2012 By Administrator | 5 of the most famous hacks, ever! 
Hacking has pretty much been a concept which has been around since as long as the internet has. Sometimes the criminals go after governments to make political statements, like the recent hacks seen against the Chinese Government, sometimes it’s all about an online cyber war, as was seen in the Israel vs Iran Stuxnet fiasco or hacking is the result of pure and simple financial gain, as was seen in the recent Sony breach.

</Read More>

What’s HOT in Application Security Vol #8

Apr 16, 2012 By Administrator | Would you Trade your freedom for Application Security?
OWASP’s Dan Greer recently gave the keynote speech at the “Application Security Matters’ conference where he delved into the problems and issues arising from the inconsistencies in application security. There are many things which contribute to lousy application security- not taking the necessary steps to protect your code, protect your data and poorly written and bloated code. What can one do about it?

</Read More>

What’s HOT in Application Security Vol#7

Apr 11, 2012 By Administrator | SQL Injection- the Number One Security Concern
Cybercriminals are using SQL injection to attack both websites and internal databases. Why are they doing this? The answer is simple- to seek sensitive data which could be used for black market activities or even identity theft. Most public websites don’t even fully understand how totally ‘at risk’ their websites are.

</Read More>

Stay Connected

Sign up today & never miss an update from the Checkmarx blog

Follow us on Feedly

Interested in trying CxSAST on your own code? You can now use Checkmarx's solution to scan uncompiled / unbuilt source code in 18 coding and scripting languages and identify the vulnerable lines of code. CxSAST will even find the best-fix locations for you and suggest the best remediation techniques. Sign up for your FREE trial now.

Checkmarx is now offering you the opportunity to see how CxSAST identifies application-layer vulnerabilities in real-time. Our in-house security experts will run the scan and demonstrate how the solution's queries can be tweaked as per your specific needs and requirements. Fill in your details and we'll schedule a FREE live demo with you.