PCI DSS: The State of Cardholder Data Attacks

Focused View

Aaron Willis

1:25:48

82 View

1 - Course Overview

1. Course Overview.mp4

01:47

2 - Understanding the Forensic Collection Process

1. Introducing the Authors and Their Backgrounds.mp4

02:08

2. How Do You Know Youve Been Breached_.mp4

01:09

3. How Should a Breach Victim (Merchant) React_.mp4

02:39

4. What Does the PFI Professional do First_.mp4

05:15

5. The Evidence Gathering Process.mp4

05:52

6. Working with the Merchant and Their Business Needs.mp4

02:24

7. Drawing Conclusions from the Evidence and Reporting.mp4

02:21

8. Applying the Reports Conclusions and Cleaning Up.mp4

04:08

9. PCI DSS Compliance and Data Breaches.mp4

01:42

3 - Point of Sale (POS) Attacks

1. Introduction to POS Attacks.mp4

04:53

2. POS System Remote Access.mp4

02:31

3. Multi-factor Authentication.mp4

02:57

4. Non-standard Pos (Card Skimming).mp4

02:59

5. Deploying Point-to-Point Encryption.mp4

05:23

4 - eCommerce Attacks

1. eCommerce Systems_ Client Side Vs. Server Side Attacks.mp4

07:08

2. Changes to Threat Response Techniques.mp4

01:42

3. Conducting Forensics for Cloud-based eCommerce Systems.mp4

02:36

4. The Problem with Shopping Carts.mp4

04:09

5. Javascript and Cross-site Scripting Attacks.mp4

03:13

5 - Infrastructure Attacks

1. Basic Vulnerabilities and Defense Strategies.mp4

04:16

2. Being Alert to Persistent Presence Attacks.mp4

04:23

3. Smart Segmentation and Reducing Your Attack Surface.mp4

01:25

4. Summary of Main Takeaways.mp4

03:47

5. Best Practices Going Forward.mp4

05:01

Description

In this course, you’ll learn about the criminals’ ways of working from an experienced (PFI) Forensic Investigator and discover what actually happens in the course of a PCI forensic investigation.

What You'll Learn?

In this course, PCI DSS: The State of Cardholder Data Attacks, John Elliott and Aaron Willis dive into data breaches and the development of the PCI DSS. Learn all about the criminals’ ways of working from an experienced PFI, discover the control failures that typically give criminals the opportunity to mount a successful attack, and discover what actually happens in the course of a PCI forensic investigation. By the end of this course, you’ll have a solid understanding of how these criminals operate and an inside glimpse of a PCI forensic investigation.

More details

User Reviews

Rating

average 0

Total votes0

Focused display

Cyber Security

Network Security

Information Security

Aaron Willis

Instructor's Courses

Along with being the senior Forensic Analyst at SecurityMetrics, Aaron Willis has over 25 years of diverse experience in all aspects of IT security, business intelligence, data mining, SaaS consulting, and programming. In addition to being a founder and VP of Technology at ScrapeGoat, Inc, Willis taught Information Systems as an adjunct professor at Utah Valley University. Willis holds a Bachelor's in Information Technology from Utah Valley University and is currently finishing a Masters in Digital Forensics. His certifications include: CISSP (Certified Information Systems Security Professional), QSA (Qualified Security Assessor) and PFI (PCI Forensic Investigator).

Pluralsight

View courses Pluralsight

Pluralsight, LLC is an American privately held online education company that offers a variety of video training courses for software developers, IT administrators, and creative professionals through its website. Founded in 2004 by Aaron Skonnard, Keith Brown, Fritz Onion, and Bill Williams, the company has its headquarters in Farmington, Utah. As of July 2018, it uses more than 1,400 subject-matter experts as authors, and offers more than 7,000 courses in its catalog. Since first moving its courses online in 2007, the company has expanded, developing a full enterprise platform, and adding skills assessment modules.