1. Docs
  2. PCI DSS Library
  3. 6.4.3 (a) - Script Inventory

6.4.3 (a) - Script Inventory

Web skimming attacks often exploit compromised JavaScript, making it essential for organizations to have complete visibility into every script operating on their payment pages. The primary requirement of this robust defence is to maintain a detailed inventory of all JavaScripts loaded on these pages, coupled with a thorough understanding of the purpose and functionality of each script.

By diligently managing this inventory, you can identify and eliminate unnecessary scripts, and more importantly, detect any that may be performing unauthorized or suspicious actions—significantly reducing the risk of data breaches through unauthorized data capture and safeguarding your customers' data.

By browsing this website, you agree to the Terms of Service and Privacy Policy