SecurityMetrics Blog

Remote Access Attacks: How to Protect Against Malware

Protect against remote access attacks by employing the following PCI DSS requirements.

Prioritizing HIPAA for Protected Health Information: 101

Taking a prioritized approach to your HIPAA compliance efforts.

SecurityMetrics PCI Support FAQ

The most commonly PCI support asked questions about our PCI compliance product.

Printer Security: Does Your Device Let Hackers In?

Network-enabled printers may contain very sensitive information about your internal network.

Picking Your Vulnerability Scanner: The Questions You Should Ask

Here are some questions you need to ask about your business and about your potential vulnerability scanner.

Where Did that Request Come From? CVE-2020-11682 (CSRF)

What is CSRF? Cross site request forgery, commonly referred to as CSRF (pronounced sea-surf), is an attack in which a user who is authenticated to an application is tricked into unintentionally performing a state-changing action.

Recording Your QIR: SecurityMetrics' New QIR Feature

Here’s what you need to know about QIRs and how SecurityMetrics is addressing Visa’s mandate.

Security Patches in Your Business: Complying with PCI Requirement 6.1

What is a Risk Assessment, and Why Does Your Business Need One?

Learn how to make a risk assessment framework for your business.

SecurityMetrics Audit for SANS Top 20 Critical Security Controls for Cyber Defense

SecurityMetrics has created a new audit based off the SANS Top 20 Critical Security Controls.

SAQ B-IP: Protecting Your Card Data

SAQ B: What Your Business Needs to Do

What's in Our 2018 SecurityMetrics HIPAA Guide?

The 2018 SecurityMetrics Guide to HIPAA Compliance will help you better understand how to protect patient data from inevitable future attacks. Our guide includes survey results that identify current HIPAA trends and will be helpful for beginners and seasoned experts.

Security Bulletin: Meltdown and Spectre Vulnerabilities

Install updates and patches as they come from your OS and CPU manufacturers.

What's Inside Our 2018 PCI Guide

We’ve officially launched our 2018 Guide to Payment Card Industry Data Security Standard (PCI DSS) Compliance.

Resources from the PCI Council: Payment Data Security Essentials

The PCI SSC recently announced the release of a “Payment Data Essentials."

WiKID 2FA Enterprise Server Cross-Site Scripting

A stored and reflected cross-site scripting vulnerability, CVE-2019-17114, was identified on WiKID Systems 2FA Enterprise Server version 4.2.0-b2047 and earlier.

SecurityMetrics Workforce Security and Compliance Training

SecurityMetrics Workforce Security and Compliance Training FAQs.

SecurityMetrics Summit 2021

SecurityMetrics Summit is a virtual data security and compliance conference designed to help businesses close compliance gaps and prevent data breaches.

Zyxel Devices Vulnerable to Cross-Site Scripting on Login page

A reflected Cross Scripting vulnerability, CVE-2019-9955, was identified on several Zyxel devices, specifically on pages that use the mp_idx parameter.

SecurityMetrics Pulse: Remote Location Cybersecurity

Your corporate network has many attack surfaces, and when you add in extended network offices, branches, and other remote locations, security begins to depend heavily on visibility.

Remote PCI DSS Audits During COVID-19: FAQs

The COVID-19 crisis has presented a variety of challenges to merchants and service providers around the world. We’ve received many questions about the impact of COVID-19 on PCI DSS audits, as well as PCI compliance in general.

SecurityMetrics Forensic Research: iFrame Payment Gateway Now Targeted

PCI Programs: How Acquirers Balance Value and Simplicity for Merchants

At SecurityMetrics, our mission is to help businesses close security and compliance gaps and prevent data breaches.

Blog

Data Security

Compliance

Company Info

Contact