Re: RE: MasterCard backs off Security, Leave Cardholders at Risk

[erez () hack co il]

MasterCard ask PCI compliance vendors only for small numbers of simple web application checks that's because most 
vendors run automatic web-tools which are less accurate  and lack of AI.

Is checking by web application automatic tools can be compared to Human based assessment ?

Today most PCI compliance vendors offer PCI compliance check less than 100$ , If they will need to interrupt 
human-hackers in each checks the price will jump.

Few PCI compliance vendors like SecuriGo (http://www.securigo.com/PCI_Compliance.htm) offers manual web application 
check by web-app experts .

Best Regards
Erese

-------------------------------------------------------------------------
Sponsored by: Watchfire

Today's hackers exploit web applications to expose, embarrass and even 
steal. Firewalls and SSL may be commonplace but recent studies indicate 
3 out of 4 websites remain vulnerable to attack. Watchfire's "Addressing 
Challenges in Application Security" whitepaper, explains what to do and 
provides a guideline to improving your own application security. 
Download this whitepaper today!

https://www.watchfire.com/securearea/whitepapers.aspx?id=701300000007t9m
--------------------------------------------------------------------------