Don't panic - here's everything you need to know

We can help.

If you have been identified as a Common Point of Purchase (CPP) for fraudulent transactions, it means that the card brands have correlated their data and strongly suspect that your payment systems may have been hacked in by criminals - and your customer data stolen.

While this is an intensely stressful time for a business and the business owners, it is critical to act quickly. Time is of the essence - the quicker you can get an investigation performed, the quicker you are likely to be able to stop the breach from causing further damage.

We can help. This is what we do every day.



Our team have worked closely with the payment card industry since 2004 and formed close and trusted relationships with major card providers, while assisting a wide range of organisations, including central banks, payment processors, global retailers, and countless small e-commerce merchants.


We’re specialists in helping businesses quickly regain control of their systems and to understand what happened. We use our technology and experience to carry out our investigations quickly and with minimal disruption to the business.


We also deploy our technology and team to protect the client during the investigation - and for a period of time after the investigation - as the criminals will often try to break back in.


Our experience, technology and capabilities will give you what you need to rapidly bring the situation under control.


Firstly, our team. We go the extra mile for our clients...

We have been carrying out PCI Forensic Investigations for over a decade and our mission is to protect our clients, while assisting them through this challenging phase of their business cycle.

We work globally and no job is too big - or too small - for us.

We have the skills, capability, experience and capacity to quickly assist you. Digital security is in our DNA and we love being able to help other businesses defend against the criminals targeting them.

We go the extra mile for our clients - helping them get their business back on track, quickly and securely.




We utilise our FGX-Web and Serengeti technology to:

• Immediately monitor the environment latent threats.
• Quickly carry out PFI forensic investigations.
• Enable rapid analysis and ongoing monitoring.
• Enable our team to work quickly, discreetly and in a minimally-intrusive manner.

Our technology helps our clients to quickly get secure and back up and running after a security breach.

Contact us using the form below to discover the many ways Foregenix can help you with your PFI Investigation needs.


PFI investigations are standard for any business that may have lost cardholder data. We have technical investigation expertise and "C-level" experience to guide organisations of all sizes through the challenges and hurdles that accompany a forensic investigation.

There are usually 7 steps to a PFI investigation:

Determine the scope of your environment
Collect evidence
Create a preliminary report
Conduct a forensic analysis
Build a containment strategy
Verify the containment
Produce a final report



We have a specialist team focused on PFI Lite investigations with a mission to help hacked businesses get secure and trading again.

PFI Lite investigations are a Visa Europe initiative designed for small eCommerce businesses who may have been hacked and lost cardholder data. This is a scaled-down PFI Investigation designed to provide a remediation service specifically for smaller eCommerce merchants.

The key requirements of a PFI Lite Investigation are to:

  • Ensure that the breach has been contained
  • Support the migration to a hosted payment page
  • Analyse the attack and identify the exposure period
  • Conduct scans against the website to verify that it's secure
  • Support the SAQ completion for PCI compliance purposes
  • Produce a report for the Card Schemes

We go further to add value to our PFI Lite clients.

With our FGX-Web Technology and our experienced team, we guarantee our clients the best PFI Lite service in the industry at the most competitive rates.

We can help you.


FGX-Web protects a website while also enabling our analysts to quickly track down criminal activity. We provide it free as a part of the investigation too. So why is it important?

• Your website has already been targeted by criminals - they will be back
• The average time between attacks on a previously hacked website is under 5 minutes – “they” know you have been hacked before and will keep trying
• An outsourced payment page is no guarantee of secure payments (read our blog for examples), especially if the website is not secure
• An insecure website can easily have the checkout process modified by attackers
• FGX-Web monitors and alerts websites of web-based attacks – enabling you to grow your business, knowing it is secure.

We can help you through the PFI Lite Investigation and we will also help you to keep your online business secure

If you’re looking for a safe, knowledgeable, discreet and effective team to help you with a PFI Lite Investigation, complete the form below and we will contact you immediately.

Speak with us

Talk to us today about forensic help

Foregenix is a global leader in the PCI Forensic Investigation space - our team has the skill, capability, capacity and technology to quickly assist you. Digital security is in our DNA and we love being able to help other businesses improve their security.

We go the extra mile for our clients.