1 min read
This Week's [in]Security - Issue 219
Welcome to This Week’s [in]Security. e-commerce security: PCI, Magecart, & the DOM part 1. New breaches: Windows passwords, Pipeline#2, VW, EA...
Welcome to This Week’s [in]Security. PCI and payments: Crypto-agility. New breaches: Wearable aggregator megabreach, Epik, Walgreens, Indonesian Intelligence Agency, multiple healthcare. New Ransomware: Threats. Follow-ups & Fall-out. Privacy: Re-identification, FTC privacy bureau. Laws & Regs: Canada: Copyright. US: Crypto-exchanges, Facebook, location warrants. World: GDPR, Assistance requests. Standards: NIST Machine Learning. Defense: Passwordless, OpenSSLv3, Android. Zoom, Design, Trolls, Kali. Vulnerabilities, Zerodays: Apple, Windows, Chrome, Azure OMIGOD, IBM. Databases, Citrix, Windows EOL, WSL, Laserfiche Ad Porn, WordPress, Drupal, WooCommerce, Travis CI, SSID stripping, Apple Cloudkit, SpookJS, RSA variant. Cybercrime: What's exploited, Multiple zerodays, Open redirects. Crime: Other Risks: Ethics, DNS, moderation, WFH, facial fakes. Health, Safety & Environment: Covid-19: Spread, Curves, Waves, and Variants; Response; Treatments; Immunity; Impact; Covid Ugly; And more.
News and announcements relating to Payment Security, PCI, Card Brands, Payments, Payment Malware and Fraud, and Payment Related Compliance.
New PCI Documents:
Why Organizations Need to Become Crypto-Agile and What that Means https://controlgap.com/blog/Cryptographic-Agility
Covering breaches, leaks, data exposures, ransomware (as potential breach), and their fallout.
New Breaches:
New Ransomware and "Incidents":
Follow-ups and fall-out:
Articles about privacy related news, risks, and trends.
News about laws, regulations, platform rules, and standards affecting security, privacy, technology, and public interest.
Canada:
US:
World:
Standards News:
Covering developments and opportunities that may help improve security.
Articles about newly discovered vulnerabilities and research.
Zero-day news:
News covering active trends, alerts, events.
Crime & Arrests, etc.:
Articles covering other types of risks.
Health, Safety & Environment:
COVID related articles. We have been following coronavirus risks since https://controlgap.com/blog/this-weeks-insecurity-issue-147.
The spread, curves, spikes, waves, reinfection, and variant strains:
Guidance, Response, and Recovery:
Treatments, Testing, Triage, Trials, and things we Learned:
Immunity and Vaccinations:
More of the good, the bad, and the ugly:
A variety of scientific, technical, historical, and more light-hearted news.
1 min read
Welcome to This Week’s [in]Security. e-commerce security: PCI, Magecart, & the DOM part 1. New breaches: Windows passwords, Pipeline#2, VW, EA...
Welcome to This Week’s [in]Security. DSS v4.0 Summary, and Secure Payment Terminal Software. New breaches: Cookies, FermiLab, Glovo, Telestra,...
1 min read
Welcome to This Week’s [in]Security. DSSv4 timelines. Magecart. New breaches: CVS, Carnival Cruises, Wegmans. New Ransomware: G7 vs. Russia,...