This Week's [in]Security - Issue 206
Welcome to This Week’s [in]Security. PCI Updates. PIN v3.1. PIN Block Format 4 Deprecated. Exchange server mass-exploitation. Big F5 has big CVE's....
Welcome to This Week’s [in]Security. PCI Updates: PTS FAQ, PIN 3.1, QSA Program. Big-Hacks: Exchange, SolarWinds, F5, Accellion. New breaches: New Ransomware: Follow-ups & Fall-out: Amazon sued. Privacy: Facial Recognition. Laws & Regs: Facebook sued, Section 230, Breach Disclosures, Location Tracking Guidelines, NIST. Defense: Isolate IoT, Tools, Browsers. Vulnerabilities: Android, iOS ZeroDay, Apple iOS. ColdFusion, NetMask code, Android, Wordpress. Arresting the messenger? Cybercrime: Trends. Account Takeovers. Other Risks: Disinformation, IoT Weapons, PII a Risk, Autopilot, Grid, Shipping, More NFTs, Win95, Health, Safety & Environment. Covid-19: Spread, Curves, Waves, and Variants. Immunity, Vaccines, and Vaccination. The Good, Bad, and Ugly (Behaviour). And more.
News and announcements relating to Payment Security, PCI, Card Brands, Payments, Payment Malware and Fraud.
PCI PIN 3.1 Updates:
QSA Program Updates
Covering breaches, leaks, data exposures, ransomware (as potential breach), and their fallout.
Major incidents:
Researchers Raise Alarm for F5 BIG-IP Malware Attacks https://www.securityweek.com/researchers-raise-alarm-f5-big-ip-malware-attacks
Energy Giant Shell Is Latest Victim of Accellion Attacks https://threatpost.com/shell-victim-of-accellion-attacks/164973/
New Breaches:
New Ransomware and "Incidents":
Follow-ups and fall-out:
Articles about privacy related news, risks, and trends.
News about laws, regulations, platform rules, and standards affecting security, privacy, technology, and public interest.
Canada:
US:
Utah Becomes the Second U.S. State to Establish Affirmative Defenses for Data Breach https://www.databreaches.net/utah-becomes-the-second-u-s-state-to-establish-affirmative-defenses-for-data-breach/
World:
Standards News:
Covering developments and opportunities that may help improve security.
Articles about newly discovered vulnerabilities and research.
News covering active trends, alerts, events.
Articles covering other types of risks.
More Non-Fungible Tokens:
Health, Safety & Environment:
COVID related articles. We have been following coronavirus risks since https://controlgap.com/blog/this-weeks-insecurity-issue-147.
The spread, curves, spikes, waves, reinfection, and variant strains:
Guidance, Response, and Recovery:
Treatments, Testing, Triage, Trials, and things we Learned:
Immunity, Vaccines, and Vaccination:
More of the good, the bad, and the ugly:
Masks, anti-maskers, distancing, compliance, and repercussions:
A variety of scientific, technical, historical, and more light-hearted news.
Welcome to This Week’s [in]Security. PCI Updates. PIN v3.1. PIN Block Format 4 Deprecated. Exchange server mass-exploitation. Big F5 has big CVE's....
Welcome to This Week’s [in]Security. Magecart. New breaches: New Ransomware. Spotify. NIST. Attack the AI. Lego? Free book. Patching! Open Source....
Welcome to This Week’s [in]Security. Magecart exfiltration. More FPE Weakness. Big-Hacks: Exchange Hack. F5 Attacks. SolarWinds. New breaches:...