Welcome to This Week’s [in]Security. PCI SSF related errata, SSF & NIST. virtual cards on android. New breaches: US Law enforcement, VPNs, Yik Yak. New Ransomware: Conti & REvil, Oregon, AGRO, pay and pay again. Follow-ups: Capital One, Colonial Pipeline, HIBP updates. Privacy: web-key-loggers, ICE. Laws & Regs - Canada: C-11. US: breach reporting, warrants, cybercrime bill. World: crypto-wars, suing cybercriminals. Defense - Cybergames, software recalls, critical open source, MFA adoption, partnerships. Vulnerabilities - Advisories: F5 Big-IP. Patching: Intel, Firewalls, multiple Windows, printers, Other: NPM hijack, supply chains, Log4ever, medical devices. Vulnerability research: Word & PDF scripts, Intel & AMD, SQL WAF bypass. Crypto-research. Cybercrime - Active: NPM, WordPress, Linux, SMS, Exchanage, Discord; Crime & Enforcement: wanted, disgruntled. Nation States and mercenaries. Other Risks, Health, Safety, Environment, Economy. AI. Russia v. Ukraine. Innovation and more.
News and announcements relating to Payment Security, PCI, Card Brands, Payments, Payment Malware and Fraud, and Payment Related Compliance.
Covering breaches, leaks, data exposures, ransomware (as potential breach), and their fallout.
Articles about privacy related news, risks, and trends.
News about laws, regulations, platform rules, and standards affecting security, privacy, technology, and public interest.
Covering developments and opportunities that may help improve security.
Articles about newly discovered vulnerabilities and research.
News covering active trends, alerts, events.
Articles covering other types of risks.
News and announcements relating to Russia's invasion of Ukraine.
A variety of scientific, technical, historical, and more light-hearted news.