SecurityMetrics Blog

What is Formjacking?

What is formjacking? Formjacking is a type of cyber attack where hackers inject malicious JavaScript code into a webpage form–most often a...
View Post

5 Steps of a PCI DSS Audit

PCI DSS assessments, also called PCI audits, may seem daunting for you and your business. But, we’ve broken down the process into 5 steps to help...

Guide to HIPAA Security Rule, Privacy Rule, and Breach Rule

Guide to HIPAA Security Rule, Privacy Rule, and Breach Rule. Did you know that protected Health Information (PHI) is extremely valuable to...

PCI Compliance in the Cloud

Learn how PCI compliance in the cloud affects your organization. "The cloud" brings up an idea of something mysterious and far away, but in...

What is CCPA Compliance? What You Need to Know About the...

What is CCPA Compliance? Does CCPA apply to my business? CCPA stands for California Consumer Privacy Act. The CCPA was enacted to protect the...

Matt Halbleib: Director of Assessments

Matt Halbleib is Director of Assessments at SecurityMetrics. He holds QSA (Qualified Security Assessor), PA-QSA (Payment Application Qualified...

Apache Struts Vulnerability: What You Should Do

You may have seen news reports of a serious security vulnerability in Apache Struts 2, which is a popular open-source framework developers use to...

What is Vulnerability Scanning?

What is Vulnerability Scanning? Vulnerability scanners are technically computer programs that search systems for weaknesses. Hackers can take...

What is Network Security?

Network security consists of the policies, procedures, programs, hardware, software, and people you use to protect your corporate network. Network...

What is a Managed Firewall and Do You Need One?

Qualified managed security service providers (MSSPs) typically provide a managed firewall service as a solution for firewall operation,...

Zyxel Devices Vulnerable to Cross-Site Scripting on Login page

A reflected Cross Scripting vulnerability, CVE-2019-9955, was identified on several Zyxel devices, specifically on pages that use the mp_idx...

5 Tips to Implement Security Awareness at Your Company

Whether you’re a CIO, the head of IT, or in a non-security-related position, if your data security practices are unclear, your company is at a...

How Much does GDPR Compliance Cost?

How much does GDPR compliance cost? The answer is more complicated than a basic dollar amount. There are many factors that will scale the cost of...

PCI Assessment FAQs

What is a PCI DSS Assessment? How do I get ready for a PCI Audit? We answer these questions and more about your PCI DSS Audit. After nearly two...

WiKID 2FA Enterprise Server Cross-Site Scripting

A stored and reflected cross-site scripting vulnerability, CVE-2019-17114, was identified on WiKID Systems 2FA Enterprise Server version...

Need help securing your business?

Request a quote!

We are excited to work with you.

*Required

Thank you!

Your request has been submitted.