Setting Up malicious software meant to breach brick-and-mortar POS hardware and software and accumulate card info during transactions The distinction between the differing types of SOC audits lies within the scope and duration on the evaluation: The security posture of one's organization is assessed according to SOC 2 prerequisites, generally https://www.nathanlabsadvisory.com/ccpa-1.html