Linux.com

On June 30, another refresh of the Payment Card Industry (PCI) Data Security Standards (PCI DSS) will upgrade Web application security testing from a best practice to a mandatory practice. The deadline forces merchants and vendors to take a closer look at application-layer security and emphasizes its importance in fighting increasing online threats. Finding and mitigating vulnerabilities is the greater goal of PCI’s Web application security initiative, as it acknowledges what security professionals have known for a long time - security needs to be addressed from the very beginning.