This Week’s [in]Security – Issue 94

Posted on 14 Jan 2019.

Welcome to This Week’s [in]Security. This week: card-not-present fraud on the rise, 200M Chinese resumes exposed by data scrapper and several smaller breaches, more magecart, driving and droning under the influence, lawsuit over vulnerabilities harming Jeep resales, nation state ransomware not covered starts a potential landmark insurance case, a commercial quantum computer, Ring's an IoT mess, Unicode Zero-Width-Spaces break URL safety checks, 51% - taking over the blockchain for profit, new DUI police powers, filter bubbles, and two very different different redaction problems.

Now here's this week’s selection of news, opinions, and research. Quickly skim annotated links organized by topic: compliance and payment security, breaches, regulation, bugs, privacy, hacking/malware, other security & risk, and more. We hope you enjoy and find them useful.

PCI Compliance and Payments

News and announcements relating to Payment Security, Payments, PCI, and Card Brands.

Breaches / Leaks

Covering breaches, leaks, data exposures, and their fallout.


Articles about privacy related news, risks, and trends.

Laws & Regulations / Standards

News about laws, regulations, and standards affecting security, privacy,  technology, and public interest.

Defense / Techniques / Solutions

Covering developments and opportunities that may help improve security.

Bugs / Design Flaws / Vulnerabilities / Research

Articles about newly discovered vulnerabilities and research.

Hacking / Malware / Cybercrime / Exploitation

News covering active trends and events.

Other Security / Risk

Articles covering other types of risks.

Off-Topic / Science & Tech / Lighter Side

A variety of scientific, technical, historical, and more light-hearted news.