This Week’s [in]Security – Issue 134

Posted on 28 Oct 2019.

Welcome to This Week’s [in]Security. This week: Evolving PCI. PCI SSF transition. Online EMV SRC. Windows 7 EOS. EOL OS's getting worse. Magecart. Penny wise-pound foolish. VPN and AV breaches. US Military PII breach. Social media portability. The CASE Act. Robot voyeurs. Alex and Google Home privacy again. SQL magic password malware. Cyber Insurance fail. AES benefits. Quantum shade. Problem visibility and executives. Attribution and nested APTs. The end is near for Windows 7. Facebook probed by most states. Facebook and elections. Is minimal security too expensive? Green tech. Women setting records. Iot again. TikTok and National Security. Data over sound. Halloween! Carbon Capture. And more.

Now here's this week’s selection of news, opinions, and research. Quickly skim annotated links organized by topic: compliance and payment security, breaches, regulation, bugs, privacy, hacking/malware, other security & risk, and more. We hope you enjoy and find them useful.

PCI Compliance and Payments

News and announcements relating to Payment Security, Payments, PCI, and Card Brands.

null- How the Council is Evolving to Secure the Future of Payments

Breaches / Leaks

Covering breaches, leaks, data exposures, and their fallout.


Articles about privacy related news, risks, and trends.

Laws & Regulations / Standards

News about laws, regulations, and standards affecting security, privacy,  technology, and public interest.

Defense / Techniques / Solutions

Covering developments and opportunities that may help improve security.

Bugs / Design Flaws / Vulnerabilities / Research

Articles about newly discovered vulnerabilities and research.

Hacking / Malware / Cybercrime / Exploitation

News covering active trends and events.

Other Security / Risk

Articles covering other types of risks.

Off-Topic / Science & Tech / Lighter Side

A variety of scientific, technical, historical, and more light-hearted news.