This Week’s [in]Security – Issue 86

Posted on 19 Nov 2018.

Welcome to This Week’s [in]Security. This week: PCI compliance rates falling, DNA site breach of credentials, Jira AWS leak, IoT security regulation, problems with corporate auditing, DHS creates CISA, more Facebook fallout continues, new FACEbook security bug, ironic GPDR plugin compromised, Meltdown and Spectre-palooza, ATM hacking, a plague of  Magecart compromises,  new AWS security controls, browser add-ons and content security policies (CSP), swatter gets over 20 years, and ballot design issues.

Now here's this week’s selection of news, opinions, and research. Quickly skim annotated links organized by topic: compliance and payment security, breaches, regulation, bugs, privacy, hacking/malware, other security & risk, and more. We hope you enjoy and find them useful.

PCI Compliance and Payments

Breaches / Leaks

Laws & Regulations / Standards

Privacy

Bugs / Design Flaws / Vulnerabilities / Defense

Hacking / Malware / Cybercrime / Offense

Other Security / Risk

Off-Topic / Science & Tech / Lighter Side