You can use the search function to find a range of UK Finance material, from consultation responses to thought leadership to blogs, or to find content on a range of topics from Capital Markets & Wholesale to Payments & Innovation.
United Kingdom
Criminals have found an effective new way to steal cardholder data in e-commerce environments. Referred to as skimming, form-jacking, form-logging, java script injection and most commonly Magecart, this attack silently harvests payment card data from within a customer's browser. The attack targets all types of organisations from small e-commerce merchants right up to the largest companies, including Ticketmaster and British Airways.
These attacks can affect any website that asks for user input, so although the criminals are targeting payment card data today, any web form, including login pages are susceptible to this attack.
This webinar will explain in simple terms how the attack works and how the criminals get their skimmers operational by both attacking web servers and also the now complex supply chain of elements that make up any web page. Understanding how the attack works then will allow the webinar to explore ways to prevent the attack happening in the first place and, more importantly, how to detect when an attack has been successful, and how to recover from it.
The webinar will be hosted by cyber security expert John Elliott, the chair of the UK Merchants? PCI Working group and former member of the Payment Card Industry (PCI) Security Standards Council (SSC) technical and management committees. Previously John worked as Head of Payment System Security at Visa Europe and is currently responsible for Information Security for a FTSE100 company. John is an internationally renowned speaker and trainer.
Agenda
Click the image below to watch the webinar again
By downloading this document, you understand and agree that any sharing, distribution or republishing of the content, without prior written authorisation from the author or content managers at UK Finance, shall be constituted as a breach of the UK Finance website terms of use.