Jscrambler is a PCI Security Standards Council Principal Participating Organization, and Pedro Fortuna, Jscrambler’s CTO and co-founder, was recently elected a member of the PCI SSC Board of Advisors attesting the relevance of Jscrambler’s 13+ years’ work on client-side security and its importance to the payment industry.
To meet the new anti-skimming requirements of PCI DSS v4.0, which includes ensuring script integrity, maintaining an up-to-date inventory of payment/parent pages’ scripts, and alerts for any tampering attempts, Jscrambler’s new tool offers advanced visibility to easily monitor and authorize vendors and scripts, while providing effortless and detailed reporting logs to demonstrate compliance to PCI Security Assessors (ISAs and QSAs) and internal compliance teams.
Web skimming attacks continue to plague organizations that have an e-commerce store, with attackers launching campaigns to hit as many targets as possible by injecting malicious code into websites via third-party providers. Jscrambler’s research has shown that in recent months the modus operandi for three of the most prolific cybercriminal groups has evolved as they seek more innovative ways to compromise targets. As a result, and if successful, these attacks can go undetected for months, potentially resulting in reputation damage and heavy fines.
Working with Jscrambler, organizations get peace of mind as security teams can configure and manage multiple websites and payment pages in one place, further streamlining compliance visibility and reporting. To stay one step ahead, and ensure that organizations maintain a secure environment, teams can react promptly due to immediate alerts on any modifications to HTTP headers, integrity breaches or adding of new vendors.
“Jscrambler is a trusted partner for businesses working to secure payment card data and to achieve PCI DSS compliance. Jscrambler’s resources allow organizations of all sizes to ensure client-side security is constantly safeguarded, effectively protecting organizations and their customers” says John Elliott, Jscrambler Advisor and one of the authors of PCI DSS v4.0. “I’m delighted to work closely with the team to ensure we’re developing one of the most advanced solutions in the market.”