zlacker

[parent] [thread] 2 comments
1. Znafon+(OP)[view] [source] 2020-04-21 19:15:11
While I trust him, how can we be sure that paymentiframe.com starts serving an iframe that steals the credit cards in the future?
replies(1): >>Kaze40+24
2. Kaze40+24[view] [source] 2020-04-21 19:41:29
>>Znafon+(OP)
From the page:

> Why should I trust you?

> [...] If you're worried about both, consider this a proof-of-concept which you should replicate on your own server (using a separate domain name from the rest of your site).

replies(1): >>tgtwea+BJ
◧◩
3. tgtwea+BJ[view] [source] [discussion] 2020-04-22 01:39:10
>>Kaze40+24
Yeah nobody should be embedding this verbatim to process payments that will fail any pci audit.
[go to top]