This Week’s [in]Security – Issue 97

Posted on 04 Feb 2019.

Welcome to This Week’s [in]Security. This week: New PCI Information supplement, Updates on SPoC, and Secure Software Framework, PwnPOS alert, More mega-breach collections, HIV and banking breaches, Apple hid a major breach, Apple punishes Facebook over naughty research app TOS violation, In Japan all your IoT belong to us, LIFX insecure smart bulb, more IoT insecurity, just clicking a link isn't probable cause, NIST extends feedback periods, Post-quantum crypto updates, Automatic bug detection and patching at scale.

Now here's this week’s selection of news, opinions, and research. Quickly skim annotated links organized by topic: compliance and payment security, breaches, regulation, bugs, privacy, hacking/malware, other security & risk, and more. We hope you enjoy and find them useful.

PCI Compliance and Payments

News and announcements relating to Payment Security, Payments, PCI, and Card Brands.

Breaches / Leaks

Covering breaches, leaks, data exposures, and their fallout.


Articles about privacy related news, risks, and trends.

Laws & Regulations / Standards

News about laws, regulations, and standards affecting security, privacy,  technology, and public interest.

Defense / Techniques / Solutions

Covering developments and opportunities that may help improve security.

Bugs / Design Flaws / Vulnerabilities / Research

Articles about newly discovered vulnerabilities and research.

Hacking / Malware / Cybercrime / Exploitation

News covering active trends and events.

Other Security / Risk

Articles covering other types of risks.

Off-Topic / Science & Tech / Lighter Side

A variety of scientific, technical, historical, and more light-hearted news.