Welcome to This Week’s [in]Security. This week: PCI releases new PIN technical FAQ document. Payment Security opinion. Breaches at PokerTracker, MoviePass, Hostinger, an adult website, MasterCard's Priceless Specials loyalty program, US and Canadian healthcare providers. Forced password resets don't always mean your provider was breached. Hy-Vee breach cards up for sale. No privacy left. Telegram cracked. Privacy placebo. Backdoor legislation. Courts rule on border searches, patent trolls. Broken privacy shield. NSA firmware protection. Foiling BEC. Cyber-insurance. Vulnerability monopolies. Nest cam leaks. Disabling cars. Lenovo insecurity. Webmin hole. Worsening supply chain attacks. Ransoming Texas. Vulnerable and fake VPNs. Kubernetes DDoS. Astronaut hacker. A world without the Internet. Vaping death. Banned from US for CBD oil. Age appropriate cyber-security education. And more.
Now here's this week’s selection of news, opinions, and research. Quickly skim annotated links organized by topic: compliance and payment security, breaches, regulation, bugs, privacy, hacking/malware, other security & risk, and more. We hope you enjoy and find them useful.
This week's photo: Careful where you park: Softball Foul 1 - Expensive Smart Windshield 0
News and announcements relating to Payment Security, Payments, PCI, and Card Brands.
Covering breaches, leaks, data exposures, and their fallout.
Articles about privacy related news, risks, and trends.
News about laws, regulations, and standards affecting security, privacy, technology, and public interest.
Covering developments and opportunities that may help improve security.
Articles about newly discovered vulnerabilities and research.
News covering active trends and events.
Articles covering other types of risks.
A variety of scientific, technical, historical, and more light-hearted news.