Criminals have found an effective new way to steal cardholder data in e-commerce environments. Referred to as skimming, form-jacking, form-logging, java script injection and most commonly Magecart, this attack silently harvests payment card data from within a customer's browser. The attack targets all types of organisations from small e-commerce merchants right up to the largest companies, including Ticketmaster and British Airways.

These attacks can affect any website that asks for user input, so although the criminals are targeting payment card data today, any web form, including login pages are susceptible to this attack.

This webinar will explain in simple terms how the attack works and how the criminals get their skimmers operational by both attacking web servers and also the now complex supply chain of elements that make up any web page. Understanding how the attack works then will allow the webinar to explore ways to prevent the attack happening in the first place and, more importantly, how to detect when an attack has been successful, and how to recover from it.

The webinar will be hosted by cyber security expert John Elliott, the chair of the UK Merchants? PCI Working group and former member of the Payment Card Industry (PCI) Security Standards Council (SSC) technical and management committees. Previously John worked as Head of Payment System Security at Visa Europe and is currently responsible for Information Security for a FTSE100 company. John is an internationally renowned speaker and trainer.

Agenda

• How a web skimming attack works
• Ways to prevent the attack affecting a website
• Ways to detect when a website has been attacked
• What to do when you?ve been attacked