Latest news with #Magecart
Yahoo
27-06-2025
- Business
- Yahoo
Leeds United and Reflectiz Partner to Share Insights on Proactive Web Security After Cyber Attack
LEEDS, England, June 27, 2025 /PRNewswire/ -- Leeds United FC, a globally recognized football club, and Reflectiz, a leading provider of proactive web security, today announced an upcoming webinar titled "Beyond the Breach: How Leeds United Achieved Proactive Web Security After a Magecart Attack." This essential webinar will delve into the critical topic of client-side security, offering invaluable lessons from Leeds United's real-world experience with a Magecart attack. This live webinar will feature Graham Peck, Head of IT and Security at Leeds United, who will provide a firsthand account of the Magecart attack on the club's online shop in February 2025. He will share the challenges faced and the pivotal steps taken to enhance their web security posture. Joining Graham Peck will be Isaac Moddel, VP Sales at Reflectiz, an expert in client-side security. Moddel will offer strategic insights into understanding, preventing, and mitigating the growing threat of Magecart attacks and other client-side vulnerabilities. Attendees will learn about: Understanding the threat of Magecart and E-skimming. Detailed insights into the Leeds United incident and its aftermath. The critical importance of supply chain visibility Strategies for moving from reactive incident response to proactive security measures. How Reflectiz's advanced functionalities provide comprehensive immunity to client-side attacks. This webinar is a must-attend for IT professionals, cybersecurity experts, e-commerce managers, and anyone responsible for maintaining the security and integrity of online platforms. Gain actionable insights and best practices to safeguard your digital assets and customer data. Webinar Details: Date: Wednesday, July 2nd, 2025 Time: 10:00 AM GMT (approx 45 min) Speakers: Graham Peck (Head of IT and Security, Leeds United) and Isaac Moddel (VP Sales, Reflectiz) Registration: About Leeds United Leeds United Football Club, based in West Yorkshire, England, is a professional football club with a rich history dating back to 1919. Playing their home matches at Elland Road, the club has spent much of its existence in the top tiers of English football, achieving notable successes including three League Championship titles, one FA Cup, and one League Cup. Known as "The Whites," Leeds United boasts a passionate global fanbase and is a significant institution in English football. About Reflectiz Reflectiz is a leading cybersecurity company specializing in next-generation web threat management. Years of research by cybersecurity experts have led to the development of our cutting-edge platform, which is trusted by global companies to keep their websites secure. Recognized by Gartner for innovation in website security, Reflectiz is dedicated to combating today's web threats and making the internet a safer place for businesses and customers alike. ContactVP MarketingDaniel SharabiReflectizdaniel.s@ Photo - View original content to download multimedia: SOURCE Reflectiz
Cision Canada
07-05-2025
- Business
- Cision Canada
Elavon and Jscrambler Partner to Strengthen PCI DSS Compliance for Merchants
More Than 400 Merchants Within the Network Gain Access to Jscrambler's Leading Client-Side Protection for Skimming Prevention and Compliance MINNEAPOLIS and PORTO, Portugal, May 7, 2025 /CNW/ -- Elavon, a global leader in payment processing, and Jscrambler, a pioneer in client-side protection and compliance, today announced a partnership to help merchants comply with PCI DSS requirements 6.4.3 and 11.6.1. Through this agreement, Elavon's network of more than 400 merchants can leverage Jscrambler's Client-Side Protection and Compliance Platform to safeguard their business from escalating web skimming attacks. The client-side protection market is growing rapidly due to significant rises in web skimming attacks, including Magecart attacks, that target payment pages and cardholder data. According to a report from Recorded Future's Insikt Group, Magecart infections surged by 103% over the first half of 2024. As a result, the e-commerce and payment industries face increasing pressure to secure client-side environments, driven by the escalation ign attacks and also PCI DSS requirements 6.4.3 and 11.6.1, which mandate script inventory management and tamper detection. Using Jscrambler's Client-Side Protection and Compliance Platform and PCI DSS solution, merchants can meet PCI DSS requirements while preventing web skimming attacks, securing payment pages, and maintaining compliance efficiently. Now, through this collaboration, the two companies combine Elavon's extensive experience as a global leader in payment processing with Jscrambler's innovative technologies to address the critical need for robust payment security. "Our vast network of merchants is increasingly aware of the growing threats targeting payment pages and the growing urgency to take action by following the guidance set forth by PCI DSS and specifically requirements 6.4.3 and 11.6.1," said Andrew McCarroll, PCIP Customer Payment Security Executive, Elavon. "By partnering with Jscrambler, Elavon is offering merchants easy access to Jscrambler's PCI DSS solution. Built on Jscrambler's decade of client-side security experience and its role as a trusted PCI SSC advisor, the solution secures payment environments so merchants can fend off skimming attacks and ensure ongoing customer trust." Jscrambler's PCI DSS solution delivers the following capabilities: Script Management: Auto-discovers and authorizes payment page scripts, reducing manual approvals by grouping vendor behaviors. Skimming Prevention: Blocks unauthorized data access in real-time, protecting against web skimming and formjacking. Tamper Detection: Monitors HTTP headers and page content, alerting on unauthorized changes via email, SIEM, or Slack. Hybrid Architecture: Supports agentless and agent-based deployment for flexibility, enabling rapid compliance for complex or acquired payment pages. PCI DSS Expertise: Provides direct access to former PCI Security Standards Council members and a strong bench of PCI DSS experts. QSA Alliance Program: Provides access to enablement sessions, assessor forums, and inventory reports to streamline audits. "As attackers increase their focus on merchants' payment pages, Elavon is not only raising awareness, it's taking action to help deliver solutions to mitigate these damaging attacks," said Carlos Gonçalves, VP of Partnerships & Growth at Jscrambler. "Their trust in our PCI DSS compliance expertise and our innovative platform will enable us to bring Jscrambler's industry-leading client-side protection to Elavon's merchants, strengthening their payment security and the larger digital payment ecosystem." On May 20, Jscrambler and Elavon will be hosting a webinar titled "Mastering PCI DSS Requirements 6.4.3 and 11.6.1: Practical Solutions for Merchant Compliance", where executives will delve into the value of the partnership in greater detail while providing additional insights on PCI DSS v4.0.1 requirements and Jscrambler's PCI DSS solution. The session will feature John Elliott (Jscrambler Security Advisor), Gareth Bowker (Jscrambler Technical Advisor), and Andrew McCarroll (Elavon PCIP Customer Payment Security Executive) and include a Q&A session for all attendees. For more information on the webinar, visit here. About Elavon Elavon is wholly owned by U.S. Bank (NYSE: USB), the fifth-largest bank in the United States, and provides end-to-end payment processing solutions and services to more than 2 million customers in the United States, Europe, and Canada. As the leading provider for airlines and a top five provider in hospitality, healthcare, retail, and public sector/education, Elavon's innovative payment solutions are designed to solve pain points for businesses from small to the largest global enterprises. About Jscrambler Jscrambler is the leader in Client-Side Protection and Compliance. Jscrambler is the first to merge advanced polymorphic JavaScript obfuscation with fine-grained third-party tag protection in a unified Client-Side Protection and Compliance Platform. Jscrambler's integrated solution ensures a robust defense against current and emerging client-side cyber threats, data leaks, misconfigurations, and IP theft, empowering software development and digital teams to innovate securely online with JavaScript. Jscrambler's Code Integrity product safeguards first-party JavaScript through state-of-the-art obfuscation and exclusive runtime protection. Jscrambler's Webpage Integrity product mitigates threats and risks posed by third-party tags, all while ensuring compliance with the new version 4 of PCI DSS. Jscrambler's Iframe Integrity empowers PSPs to deliver seamless protection, PCI DSS compliance, and SAQ A eligibility to merchants. With Jscrambler, businesses adopt a unified, future-proof client-side security policy, all while achieving compliance with emerging security standards. Jscrambler serves a diverse range of customers, including top Fortune 500 companies, online retailers, airlines, media outlets, and financial services firms whose success depends on safely engaging with their customers online. For more information, visit or follow Jscrambler on LinkedIn or X.
