Blog

Featured
A Guide to New Requirements in PCI DSS 4.0.1
SecurityMetrics Uncovers a Near 700 Site Global Skimming Operation
Read now
trending_flat
2026 Cybersecurity Outlook & Lessons
Read now
trending_flat
How Spectre AI Identifies Merchant Fraud and Attrition to Secure Your Portfolio
Read now
trending_flat
Latest
search
Search...
Select Category
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Zyxel Devices Vulnerable to Cross-Site Scripting on Login page
Data Security

A reflected Cross Scripting vulnerability, CVE-2019-9955, was identified on several Zyxel devices, specifically on pages that use the mp_idx parameter.

SecurityMetrics Pulse: Remote Location Cybersecurity
Pulse

Your corporate network has many attack surfaces, and when you add in extended network offices, branches, and other remote locations, security begins to depend heavily on visibility.

Remote PCI DSS Audits During COVID-19: FAQs
PCI Trends

The COVID-19 crisis has presented a variety of challenges to merchants and service providers around the world. We’ve received many questions about the impact of COVID-19 on PCI DSS audits, as well as PCI compliance in general.

SecurityMetrics Forensic Research: iFrame Payment Gateway Now Targeted
Ecommerce Security
PCI Programs: How Acquirers Balance Value and Simplicity for Merchants
PCI Partner

At SecurityMetrics, our mission is to help businesses close security and compliance gaps and prevent data breaches.

SecurityMetrics 2019 PCI Compliance Guide
PCI Trends

Compliance with any mandate takes time and planning. But, thousands of customers and readers use PCI Compliance Guide to make the PCI compliance process faster and simpler, as well as better maintain compliance.

WiKID Systems 2FA Enterprise Server SQL injection
Data Security

A SQL Injection vulnerability, CVE-2019-16917, was identified on WiKID Systems 2FA Enterprise Server through version 4.2.0-b2047.

WiKID Systems 2FA Enterprise Server CSRF
Data Security

Multiple Cross-Site Request Forgery issues, CVE-2019-17118, were identified on WiKID Systems 2FA Enterprise Server through version 4.2.0-b2053.

What is a Business Continuity Plan?
Forensics

A business continuity plan (BCP) provides a way for organizations to deal with the business impact of any disruptive event and carry on with business.

What is Vulnerability Scanning?

What is Vulnerability Scanning? Vulnerability scanners are computer programs that search systems for weaknesses.

What is Network Security?

Network security consists of the policies, procedures, programs, hardware, software, and people you use to protect your corporate network.

Sensitive Data Discovery Alert: 61% Don't Protect Customer Cards
Data Discovery

Payment card data can easily leak due to poor processes or misconfigured software.

PCI Requirements - You're Not Done Yet!
PCI

PCI compliance isn’t an event. It’s an ongoing process!

PCI – You Don't Have to be Perfect
PCI

These service guarantees exist to address the financial hardships your business might endure in the aftermath of a compromise.

PCI 3.0: What You Need to Know
PCI Trends

This blog covers the important changes from PCI DSS version 2.0 and 3.0.

Stop Looking for a Mobile Phone Security Standard
PCI

If businesses are determined to provide mobile solutions, it is their responsibility to educate themselves, ensure the security of the solution, and know the risk they’re taking upon themselves.

Shellshock: Be Wary, But Don't Panic
Data Security

Shellshock, also known as the Bash Bug, is a software vulnerability that could make your systems vulnerable.

Plug-and-Play POS: Can It Ever Be Secure?
Data Security

The plug-and-play mindset is ruining Point-of-Sale (POS) security.

SSL 3.0: POODLE Vulnerability Update
Data Security

If you have any questions, please contact SecurityMetrics support, 801.705.5700.

Nature's 7 Hacker Defense Mechanisms
Forensics

Find out how to use nature's defense mechanisms to protect your business.

Should I Outsource My E-Commerce Website?
Ecommerce Security

Depending on how you outsource, you may be able to decrease your PCI scope and business risk.

Should You FREAK Out About The Newest SSL/TLS Exploit?
Data Security

If you have any questions, please contact SecurityMetrics support, 801.705.5700.

PCI 3.1: Stop Using SSL and Outdated TLS Immediately
PCI Trends

PCI version 3.1 was primarily released to address the insecurity of SSL and some TLS encryption protocols.

PCI Audit Glossary "Alphabet Soup:" De-Jumbling the Jargon
PCI Audit

We define important PCI DSS acronyms and terms in this PCI audit glossary.

Stay up to date
Subscribe to our blog.
Subscribe Now
Data Security
Vulnerability ScanningPenetration TestingSecurity TrainingPANscan®SecurityMetrics VisionSecurityMetrics MobileCIS Controls AssessmentConsultingResellerForensic/Incident ResponseData and Network SecurityData Security AcademyWebpage Integrity Monitoring (WIM)Shopping Cart InspectShopping Cart Monitor (PCI 6.4.3 & 11.6.1)SecurityMetrics Pulse
Compliance
GDPR CompliancePCI CompliancePCI DSS AuditPCI Level 4 ProgramPA-DSS/SSF AuditP2PE AuditPIN Security AssessmentPCI PoliciesPCI TrainingHIPAA ComplianceHIPAA PoliciesHIPAA TrainingHealth Network ProgramHITRUST
CMMC Compliance
Company Info
About UsBlogGlossaryMedia RelationsCareersTerms of UsePrivacyAbuseDo Not Sell My Information
Contact
Contact UsReport a Vulnerability
SecurityMetrics podcast logoLinkedIn logoFacebook logo
© 2026 SecurityMetrics, Inc. All rights reserved.
Privacy PolicyTerms and Conditions
Your IP Address is:
YouTube logoSecurityMetrics podcast logoLinkedIn logoFacebook logo
Subscribe to our blog
Subscribe Now
© 2001–2026 SecurityMetrics, Inc.
All rights reserved.
Privacy Policy
|
Terms and Conditions
|
About us