This Week’s [in]Security – Issue 88

Posted on 03 Dec 2018.

Welcome to This Week’s [in]Security. This week: PCI Telephony updates. Record setting post-GDPR breach at Starward/Marriot. Breaches at Dell, Atrium Health, Sky Brasil, Dunkin Donuts, Sotheby's Home, Data & Leads, and an unidentified ElasticSearch server.  Uber fined.  Back-dooring Oz. Nosy CRA workers. Criminal volunteers on open-source project and Trojans code to steal crypto-wallets. And, Faking DNA evidence.

Now here's this week’s selection of news, opinions, and research. Quickly skim annotated links organized by topic: compliance and payment security, breaches, regulation, bugs, privacy, hacking/malware, other security & risk, and more. We hope you enjoy and find them useful.

PCI Compliance and Payments

Breaches / Leaks

Laws & Regulations / Standards

Privacy

Bugs / Design Flaws / Vulnerabilities / Defense

Hacking / Malware / Cybercrime / Offense

Other Security / Risk

Off-Topic / Science & Tech / Lighter Side