This Week’s [in]Security – Issue 137

Welcome to This Week’s [in]Security. This week: Compliance falters. Vote for 2020 PCI Sigs. PTS DTRs published. AI and fraud. Breaches  Sunshine Behavioral Health (93M), InfoTrax (1M).  Breaches and stock prices. Google has 50M health records. FB camera privacy. Canadian banks send data on 1M to US IRS. US-wide privacy. Privacy Shield concerns. Policy and Tech. Border searches of phones. Cellular location data. Caller ID spoofing and defense. BlueKeep patching fail and DoS. More firmware bugs. SIM swapping. How bad is it? And more.

Now here's this week’s selection of news, opinions, and research. Quickly skim annotated links organized by topic: compliance and payment security, breaches, regulation, bugs, privacy, hacking/malware, other security & risk, and more. We hope you enjoy and find them useful.

PCI Compliance and Payments

News and announcements relating to Payment Security, Payments, PCI, and Card Brands.

Breaches / Leaks

Covering breaches, leaks, data exposures, and their fallout.

Privacy

Articles about privacy related news, risks, and trends.

Laws & Regulations / Standards

News about laws, regulations, and standards affecting security, privacy,  technology, and public interest.

Defense / Techniques / Solutions

Covering developments and opportunities that may help improve security.

Bugs / Design Flaws / Vulnerabilities / Research

Articles about newly discovered vulnerabilities and research.

Hacking / Malware / Cybercrime / Exploitation

News covering active trends and events.

Other Security / Risk

Articles covering other types of risks.

Off-Topic / Science & Tech / Lighter Side

A variety of scientific, technical, historical, and more light-hearted news.