Payment aggregation is relatively new in the PCI world, and hasn’t had much exposure to the QSA community. You may have run across some entities telling prospects and clients they have no PCI obligations for any transactions undertaken using their products.
We often have a need to run a Kali image in an EC2 environment and Offensive Security no longer maintains a Kali AMI...
The other day I was running a Nessus scan against a client and saw Plugin ID 81576 (Jetty HttpParser Error Remote Memory Disclosure).
AppSec Consulting will be exhibiting at the PCI SSC North American Community Meeting in Las Vegas September 20-22..