FEATURED

Introduction of new requirements (6.4.3 and 11.6.1) for PCI DSS v4.0

This guidance is designed for any organisation seeking to comply with the new requirement 11.6.1 and 6.4.3 introduced in PCI DSS v4.0 while implementing PCI DSS in their environment. The suggestions ...

READ STORY

FEATURED

ASV Scanning guide for PCI DSS V4.0 Compliance: New requirements 11.3.2. and 11.3.2.1

This guidance is designed for any organisation seeking to comply with the new requirement 11.3 along with its sub requirements 11.3.2. and 11.3.2.1 introduced in PCI DSS SAQ A v4.0 while implementing ...

READ STORY

FEATURED

The Potential Risks Of Exposed Admin Login Panels

Among many of our forensic clients we are noticing that fairly often the login panel for administration of the sites is left publicly and easily accessible, either through easy to guess URLs or ...

READ STORY

FEATURED

Alert: New PHP Webshell Identified

A new piece of malware has been identified by the Foregenix DFIR team. The malware is a PHP webshell - a script, which when installed on a compromised system, presents a sophisticated administration ...

READ STORY

FEATURED

Anatomy Of A Magento Attack: Froghopper

Magento is the most popular eCommerce web application in the world for advanced/fast growing eCommerce businesses, with an estimated 200,000+ live websites using the Content Management System ...

READ STORY

FEATURED

How Printer Passwords Led to Domain Compromise in Penetration Test

A few months ago, during an internal infrastructure penetration test, the network printers played a very important role in the assessment. What initially looked like a not-so-important low severity ...

READ STORY