Matthew Gast
By Matthew Gast
Posted On September 25, 2018

The Newegg Breach: PCI Means Nothing to Magecart

Data Breach | Application Security | PCI

  On September 7, British Airways was breached, in spite of following the detailed rules for payment card security, the PCI Data Security Standard. Two.. Read More…
Matthew Gast
By Matthew Gast
Posted On September 20, 2018

The British Airways Breach: PCI is Not Enough

Data Breach | PCI | Application Security

 I’ve previously written about the Ticketmaster breach, which was the work of Magecart, a group that has been active since 2016. One of their latest.. Read More…
Matthew Gast
By Matthew Gast
Posted On August 23, 2018

Cross Site Scripting (XSS) Can Steal Payment Info from Payment Processors

PCI | Cross-Site Scripting | Application Security

  Just because your Payment Processor has PCI Level 1, doesn't mean you can ignore Cross-Site Scripting. If you handle money, you process credit cards... Read More…
Matthew Gast
By Matthew Gast
Posted On August 16, 2018

Analysis of the Ticketmaster Breach

Data Breach | CSP | Application Security | PCI

Although there have been a number of breaches in the last few weeks, the story around the breach at Ticketmaster is more interesting than most. It.. Read More…
Matthew Gast
By Matthew Gast
Posted On July 11, 2018

tCell: A Tool for PCI Compliance

PCI | Application Security | Compliance

If your app handles payments, you are undoubtedly familiar with the security rules surrounding credit card transactions. The Payment Card Industry.. Read More…
Matthew Gast
By Matthew Gast
Posted On April 19, 2018

Should Security Teams Use CSP Nonces to Better Comply with PCI?

PCI | CSP | CSP Nonces | Application Security

This week, tCell sponsored BSidesSF. Many things I’ve heard about the conference proved to be true, and the technical depth of conversations I had at.. Read More…
Matthew Gast
By Matthew Gast
Posted On April 05, 2018

Under Armour Data Breach: Here's What We Know

Data Breach | Application Security | PCI

Last week, Under Armour announced that a breach on MyFitnessPal compromised the data from 150 million users. I learned of the breach when a few friends.. Read More…

Posts navigation

All posts

SUBSCRIBE

Get all the latest news from tCell »

Recent Posts