Blog
All your questions on PCI DSS 4.0 answered
All Your Questions on PCI DSS 4.0, Answered

The newly released PCI DSS 4.0 continues to be hotly debated and discussed, since its launch on 31st March 2022. This post helps answer some of the frequently asked questions on the new standard including implementation queries, to help create awareness and guide organizations in their transition.

Read More
MFA exploits by Threat Actors on the rise
Rising MFA Exploits And Best Practices To Mitigate Them

Threat actors have, in the recent past been exploiting misconfiguration in MFA, to get a foothold into the victim’s network – a trend SISA has been observing in forensic investigations. A commonly observed instance has been the exploitation of default MFA protocols followed by the PrintNightmare vulnerability exploit.

Read More
Unveiling PCI DSS 4.0 - contactless terminal with mobile
The Curtain Rises: Unveiling PCI DSS 4.0

The newly released PCI DSS v4.0 is expansive in scope, futuristic in approach and sharper in focus that covers Risk-driven evaluation, Threat-based plan of action, evolving payment form factors and stringent controls to promote greater security for payment data while also offering a great deal of flexibility through customized validation.

Read More
PCI DSS 4.0 Expected changes and way forward
Prepare to embrace continuous compliance with PCI DSS 4.0

With the release of PCI DSS 4.0 round the corner, there is so much anticipation about likely changes and implications. While the core requirements are expected to remain intact, the new standard will likely expand to reflect evolving changes in technology and threat landscape, while also looking to enhance validation methods and procedures.

Read More