This Week’s [in]Security – Issue 120

Posted on 15 Jul 2019.

Welcome to This Week’s [in]Security. This week: PCI on key blocks and new password management, massive Magecart AWS infection, FTC to fine Facebook $5B. Breaches at Fieldwork Software (cards), GE aviation, and Maryland Department of Labor, and a mega mongo 3rd party breach. Creepy Google Home. Election security. What does password-less mean? CPEs, More IoT nonsense. Hijacking USB dongles, security problems in Android libraries, multiple ransomware attacks and responses, Spotify appears to have a fraud problem with debit cards, espionage, trade secrets, copyright and stock photos, cyber incident impacts, CEO's and board level security, widespread outages, space risks, economic risks, and more.

Now here's this week’s selection of news, opinions, and research. Quickly skim annotated links organized by topic: compliance and payment security, breaches, regulation, bugs, privacy, hacking/malware, other security & risk, and more. We hope you enjoy and find them useful.

PCI Compliance and Payments

News and announcements relating to Payment Security, Payments, PCI, and Card Brands.

Breaches / Leaks

Covering breaches, leaks, data exposures, and their fallout.

Privacy

Articles about privacy related news, risks, and trends.

Laws & Regulations / Standards

News about laws, regulations, and standards affecting security, privacy,  technology, and public interest.

Defense / Techniques / Solutions

Covering developments and opportunities that may help improve security.

Bugs / Design Flaws / Vulnerabilities / Research

Articles about newly discovered vulnerabilities and research.

Hacking / Malware / Cybercrime / Exploitation

News covering active trends and events.

Other Security / Risk

Articles covering other types of risks.

Off-Topic / Science & Tech / Lighter Side

A variety of scientific, technical, historical, and more light-hearted news.