Modern retail and hospitality websites deliver a rich customer experience using client-side JavaScript, including scripts from third-party vendors and open source libraries. Unfortunately, these scripts introduce risks because they are outside the control of the website owner. Magecart and digital skimming attacks steal credit card numbers and PII from websites by exploiting this blind-spot. A prominent airline recently paid $230M in regulatory fines for Magecart attacks that occurred in 2017, and remain exposed to millions more in liabilities. This session will shed light on the client-side blindspot, explain how Magecart attacks exploit this and the strategies a modern retail and hospitality business should consider to mitigate this threat.

Join PerimeterX ‘s CTO, Ido Safruti, and VP of product marketing and certified Magecart security expert Deepak Patel as they walk through:

  • Attacker methods and tricks used to compromise websites
  • Detection techniques and their limitations
  • Mitigation strategies to get better visibility into the website supply chain
  • New approaches to web application security
 

Sponsored by:

ELIGIBILITY: This webinar is open to RH-ISAC Core members and retail and hospitality cybersecurity practitioners eligible for Core membership. Ineligible registrants will have their registration canceled. To learn about eligibility, visit rhisac.org/membership. Email events@rhisac.org with any questions.