Jason Kent, hacker-in-residence at Cequence, walks through online-retail card fraud and what to do about it. Many retailers now use third-party credit-card processing for their online transactions. But at the same time, they re offloading this data to a potential unsecured third party. How can retailers provide a seamless customer experience while still protecting the critical data with which they’re trusted? The Issue: API Abuse & Enumeration Attacks.
Source: https://threatpost.com/third-party-apis-enumeration-attacks/162589/