Know who to hire to help fix PCI compliance issues on a client's website?
I have a client that keeps getting fined monthly for being in violation of PCI Compliance Issues according to SecurityMetrics.com. I would like to find someone to hire to help fix these issues. Any suggestions?
The violation I am having problems fixing are in regards to cross-site scripting and weak/medium strength ciphers. Results from the test say:
4 Possible cross site scripting on ...[website address here]... Use the following commands to verify this: wp --inject.....[site links here]...This website may have other injection related vulnerabilities. [More]
4 Synopsis : The remote service supports the use of weak SSL ciphers. Description : The remote host supports the use of SSL ciphers that offer either weak encryption or no encryption at all. Note: This is considerably easier to exploit if the attacker is on the same physical network.
Thank you for any support or leads, it's much appreciated.
Chelsea
The 2nd Amendment, 1789 - The Original Homeland Security.
Gun control means never having to say, "I missed you."
The 2nd Amendment, 1789 - The Original Homeland Security.
Gun control means never having to say, "I missed you."
The 2nd Amendment, 1789 - The Original Homeland Security.
Gun control means never having to say, "I missed you."