Weekly [in]Security

WP_Query Object ( [query] => Array ( [post_type] => post [post_status] => publish [cat] => 216 [orderby] => date [order] => desc [posts_per_page] => 3 [paged] => 1 [ignore_sticky_posts] => 1 ) [query_vars] => Array ( [post_type] => post [post_status] => publish [cat] => 216 [orderby] => date [order] => DESC [posts_per_page] => 3 [paged] => 1 [ignore_sticky_posts] => 1 [error] => [m] => [p] => 0 [post_parent] => [subpost] => [subpost_id] => [attachment] => [attachment_id] => 0 [name] => [static] => [pagename] => [page_id] => 0 [second] => [minute] => [hour] => [day] => 0 [monthnum] => 0 [year] => 0 [w] => 0 [category_name] => weekly-insecurity [tag] => [tag_id] => [author] => [author_name] => [feed] => [tb] => [meta_key] => [meta_value] => [preview] => [s] => [sentence] => [title] => [fields] => [menu_order] => [embed] => [category__in] => Array ( ) [category__not_in] => Array ( ) [category__and] => Array ( ) [post__in] => Array ( ) [post__not_in] => Array ( ) [post_name__in] => Array ( ) [tag__in] => Array ( ) [tag__not_in] => Array ( ) [tag__and] => Array ( ) [tag_slug__in] => Array ( ) [tag_slug__and] => Array ( ) [post_parent__in] => Array ( ) [post_parent__not_in] => Array ( ) [author__in] => Array ( ) [author__not_in] => Array ( ) [update_post_term_cache] => 1 [suppress_filters] => [cache_results] => 1 [lazy_load_term_meta] => 1 [update_post_meta_cache] => 1 [nopaging] => [comments_per_page] => 50 [no_found_rows] => ) [tax_query] => WP_Tax_Query Object ( [queries] => Array ( [0] => Array ( [taxonomy] => category [terms] => Array ( [0] => 216 ) [field] => term_id [operator] => IN [include_children] => 1 ) ) [relation] => AND [table_aliases:protected] => Array ( [0] => wpcm_term_relationships ) [queried_terms] => Array ( [category] => Array ( [terms] => Array ( [0] => 216 ) [field] => term_id ) ) [primary_table] => wpcm_posts [primary_id_column] => ID ) [meta_query] => WP_Meta_Query Object ( [queries] => Array ( ) [relation] => [meta_table] => [meta_id_column] => [primary_table] => [primary_id_column] => [table_aliases:protected] => Array ( ) [clauses:protected] => Array ( ) [has_or_relation:protected] => ) [date_query] => [request] => SELECT SQL_CALC_FOUND_ROWS wpcm_posts.ID FROM wpcm_posts LEFT JOIN wpcm_term_relationships ON (wpcm_posts.ID = wpcm_term_relationships.object_id) WHERE 1=1 AND ( wpcm_term_relationships.term_taxonomy_id IN (216) ) AND wpcm_posts.post_type = 'post' AND ((wpcm_posts.post_status = 'publish')) GROUP BY wpcm_posts.ID ORDER BY wpcm_posts.menu_order, wpcm_posts.post_date DESC LIMIT 0, 3 [posts] => Array ( [0] => WP_Post Object ( [ID] => 2052 [post_author] => 2 [post_date] => 2019-08-19 19:25:50 [post_date_gmt] => 2019-08-19 19:25:50 [post_content] =>

Welcome to This Week’s [in]Security. This week: PCI more on Key Blocks and some case studies. Breeches: Hy-Vee, Choice Hotels, State Farm, dating apps. Followups on Capital One, Equifax, AMCA, and First America. What may be the first mega breach of biometric data. Privacy commissioner on what to do if breached. Regaining trust. Facebook had people listening in on messenger calls too. NIST and cyberbudgets for small companies. Facebook biometric lawsuit. DEFCON is done and there are lots of new vulnerabilities and defensive techniques. Cybersecurity as practiced by experts and regular people. Google phasing out android passwords. Protecting 100M Lines of code. Escape room recruiting. Instagram 'fake' buttons. A skimmer detector. Ancient and horrible Windows CTF vulnerability. Browsers dropping XSS protections. EV certs. No honor among thieves. Sonic-Attack. Vanity plate risks. Brexit shortages. Stopping mass shooters and more.

Now here's this week’s selection of news, opinions, and research. Quickly skim annotated links organized by topic: compliance and payment security, breaches, regulation, bugs, privacy, hacking/malware, other security & risk, and more. We hope you enjoy and find them useful.

PCI Compliance and Payments

News and announcements relating to Payment Security, Payments, PCI, and Card Brands.

Breaches / Leaks

Covering breaches, leaks, data exposures, and their fallout.

Privacy

Articles about privacy related news, risks, and trends.

Laws & Regulations / Standards

News about laws, regulations, and standards affecting security, privacy,  technology, and public interest.

Defense / Techniques / Solutions

Covering developments and opportunities that may help improve security.

Bugs / Design Flaws / Vulnerabilities / Research

Articles about newly discovered vulnerabilities and research.

Hacking / Malware / Cybercrime / Exploitation

News covering active trends and events.

Other Security / Risk

Articles covering other types of risks.

Off-Topic / Science & Tech / Lighter Side

A variety of scientific, technical, historical, and more light-hearted news.

_______________________________________________________________

Becoming PCI Compliant can be difficult, so why not let Control Gap guide you. We are the largest dedicated PCI compliance company in Canada. Contact us today and learn more about how we can help you: Get PCI Compliant. Stay PCI Compliant.

[post_title] => This Week’s [in]Security – Issue 124 [post_excerpt] => [post_status] => publish [comment_status] => open [ping_status] => open [post_password] => [post_name] => this-weeks-insecurity-issue-124 [to_ping] => [pinged] => https://www.imperva.com/blog/clear-message-sent-dont-roll-the-dice-on-data-privacy-compliance/ https://micky.com.au/ransomware-fighter-on-the-run-after-costing-hacker-gangs-millions/ [post_modified] => 2019-08-19 19:25:53 [post_modified_gmt] => 2019-08-19 19:25:53 [post_content_filtered] => [post_parent] => 0 [guid] => http://controlgap.com/?p=2052 [menu_order] => 10 [post_type] => post [post_mime_type] => [comment_count] => 0 [filter] => raw ) [1] => WP_Post Object ( [ID] => 2051 [post_author] => 2 [post_date] => 2019-08-12 13:44:02 [post_date_gmt] => 2019-08-12 13:44:02 [post_content] =>

Welcome to This Week’s [in]Security. This week: PCI - the first listed SPoC solution, DSS v4 development. PCI, Visa, and Retail & Hospitality ISAC coordinate Magecart security alerts. Bypassing Visa contact-less limits. Capital One - 106M record cloud breach, arrest, analysis, investigations, and lawsuits. Breaches - CafePress, Mexican bookstore, POS supply chain, Amazon cloud backups, Honda, FormGet, ambulance and police services. Equifax short cash for payouts. GDPR used to breach GDPR. GDPR revenue impact. PSD2 and e-commerce. EU companies on hook for FB likes. The "going Dark" debate rages. Encryption in space is hard. Abusing the Blockchain. Vulnerabilities - small planes, DSLRs, more Spectre, SCADA, WPA3, Qualcomm-Android, 40+ Windows drivers, 200M IoT devices. No open instant message malware. Mobile carrier insecurity. Selling and buying insecure kit. War-Shipping. Pseudoscience social media risks. The TSA finds a missile launcher in checked luggage. And more.

Now here's this week’s selection of news, opinions, and research. Quickly skim annotated links organized by topic: compliance and payment security, breaches, regulation, bugs, privacy, hacking/malware, other security & risk, and more. We hope you enjoy and find them useful.

PCI Compliance and Payments

News and announcements relating to Payment Security, Payments, PCI, and Card Brands.

Breaches / Leaks

Covering breaches, leaks, data exposures, and their fallout.

Privacy

Articles about privacy related news, risks, and trends.

Laws & Regulations / Standards

News about laws, regulations, and standards affecting security, privacy,  technology, and public interest.

Defense / Techniques / Solutions

Covering developments and opportunities that may help improve security.

Bugs / Design Flaws / Vulnerabilities / Research

Articles about newly discovered vulnerabilities and research.

Hacking / Malware / Cybercrime / Exploitation

News covering active trends and events.

Other Security / Risk

Articles covering other types of risks.

Off-Topic / Science & Tech / Lighter Side

A variety of scientific, technical, historical, and more light-hearted news.

_______________________________________________________________

Becoming PCI Compliant can be difficult, so why not let Control Gap guide you. We are the largest dedicated PCI compliance company in Canada. Contact us today and learn more about how we can help you: Get PCI Compliant. Stay PCI Compliant.

[post_title] => This Week’s [in]Security – Issue 123 [post_excerpt] => [post_status] => publish [comment_status] => open [ping_status] => open [post_password] => [post_name] => this-weeks-insecurity-issue-123 [to_ping] => [pinged] => https://scienmag.com/recursive-language-and-modern-imagination-were-acquired-simultaneously-70000-years-ago/ [post_modified] => 2019-08-12 13:44:04 [post_modified_gmt] => 2019-08-12 13:44:04 [post_content_filtered] => [post_parent] => 0 [guid] => http://controlgap.com/?p=2051 [menu_order] => 11 [post_type] => post [post_mime_type] => [comment_count] => 0 [filter] => raw ) [2] => WP_Post Object ( [ID] => 2050 [post_author] => 2 [post_date] => 2019-07-29 01:29:42 [post_date_gmt] => 2019-07-29 01:29:42 [post_content] =>

Welcome to This Week’s [in]Security. This week: PCI: SSF FAQ document, Contactless COTS comment period, CPEs. Breaches: QuickBit, Robinhood. Breach followups: Citrix, Facebook, Equifax, AMCA. 2019 Breach Cost Study. Netflix film on Cambridge Analytica. Anonymization fails, changing the the encryption backdoor debate, fooling an anti-malware 'AI', weak AES keys, election security, Observatory for Internet Abuse, detecting fake images, the Cybersecurity Visuals Challenge, payroll phishing, a new look a the climate change problem, and more.

Now here's this week’s selection of news, opinions, and research. Quickly skim annotated links organized by topic: compliance and payment security, breaches, regulation, bugs, privacy, hacking/malware, other security & risk, and more. We hope you enjoy and find them useful.

This Week [in]Security will be on hiatus next week, issue 123 will return in two weeks.

PCI Compliance and Payments

News and announcements relating to Payment Security, Payments, PCI, and Card Brands.

Breaches / Leaks

Covering breaches, leaks, data exposures, and their fallout.

Privacy

Articles about privacy related news, risks, and trends.

Laws & Regulations / Standards

News about laws, regulations, and standards affecting security, privacy,  technology, and public interest.

Defense / Techniques / Solutions

Covering developments and opportunities that may help improve security.

Bugs / Design Flaws / Vulnerabilities / Research

Articles about newly discovered vulnerabilities and research.

Hacking / Malware / Cybercrime / Exploitation

News covering active trends and events.

Other Security / Risk

Articles covering other types of risks.

Off-Topic / Science & Tech / Lighter Side

A variety of scientific, technical, historical, and more light-hearted news.

_______________________________________________________________

Becoming PCI Compliant can be difficult, so why not let Control Gap guide you. We are the largest dedicated PCI compliance company in Canada. Contact us today and learn more about how we can help you: Get PCI Compliant. Stay PCI Compliant.

[post_title] => This Week’s [in]Security – Issue 122 [post_excerpt] => [post_status] => publish [comment_status] => open [ping_status] => open [post_password] => [post_name] => this-weeks-insecurity-issue-122 [to_ping] => [pinged] => [post_modified] => 2019-07-29 01:29:45 [post_modified_gmt] => 2019-07-29 01:29:45 [post_content_filtered] => [post_parent] => 0 [guid] => http://controlgap.com/?p=2050 [menu_order] => 12 [post_type] => post [post_mime_type] => [comment_count] => 0 [filter] => raw ) ) [post_count] => 3 [current_post] => -1 [in_the_loop] => [post] => WP_Post Object ( [ID] => 2052 [post_author] => 2 [post_date] => 2019-08-19 19:25:50 [post_date_gmt] => 2019-08-19 19:25:50 [post_content] =>

Welcome to This Week’s [in]Security. This week: PCI more on Key Blocks and some case studies. Breeches: Hy-Vee, Choice Hotels, State Farm, dating apps. Followups on Capital One, Equifax, AMCA, and First America. What may be the first mega breach of biometric data. Privacy commissioner on what to do if breached. Regaining trust. Facebook had people listening in on messenger calls too. NIST and cyberbudgets for small companies. Facebook biometric lawsuit. DEFCON is done and there are lots of new vulnerabilities and defensive techniques. Cybersecurity as practiced by experts and regular people. Google phasing out android passwords. Protecting 100M Lines of code. Escape room recruiting. Instagram 'fake' buttons. A skimmer detector. Ancient and horrible Windows CTF vulnerability. Browsers dropping XSS protections. EV certs. No honor among thieves. Sonic-Attack. Vanity plate risks. Brexit shortages. Stopping mass shooters and more.

Now here's this week’s selection of news, opinions, and research. Quickly skim annotated links organized by topic: compliance and payment security, breaches, regulation, bugs, privacy, hacking/malware, other security & risk, and more. We hope you enjoy and find them useful.

PCI Compliance and Payments

News and announcements relating to Payment Security, Payments, PCI, and Card Brands.

Breaches / Leaks

Covering breaches, leaks, data exposures, and their fallout.

Privacy

Articles about privacy related news, risks, and trends.

Laws & Regulations / Standards

News about laws, regulations, and standards affecting security, privacy,  technology, and public interest.

Defense / Techniques / Solutions

Covering developments and opportunities that may help improve security.

Bugs / Design Flaws / Vulnerabilities / Research

Articles about newly discovered vulnerabilities and research.

Hacking / Malware / Cybercrime / Exploitation

News covering active trends and events.

Other Security / Risk

Articles covering other types of risks.

Off-Topic / Science & Tech / Lighter Side

A variety of scientific, technical, historical, and more light-hearted news.

_______________________________________________________________

Becoming PCI Compliant can be difficult, so why not let Control Gap guide you. We are the largest dedicated PCI compliance company in Canada. Contact us today and learn more about how we can help you: Get PCI Compliant. Stay PCI Compliant.

[post_title] => This Week’s [in]Security – Issue 124 [post_excerpt] => [post_status] => publish [comment_status] => open [ping_status] => open [post_password] => [post_name] => this-weeks-insecurity-issue-124 [to_ping] => [pinged] => https://www.imperva.com/blog/clear-message-sent-dont-roll-the-dice-on-data-privacy-compliance/ https://micky.com.au/ransomware-fighter-on-the-run-after-costing-hacker-gangs-millions/ [post_modified] => 2019-08-19 19:25:53 [post_modified_gmt] => 2019-08-19 19:25:53 [post_content_filtered] => [post_parent] => 0 [guid] => http://controlgap.com/?p=2052 [menu_order] => 10 [post_type] => post [post_mime_type] => [comment_count] => 0 [filter] => raw ) [comment_count] => 0 [current_comment] => -1 [found_posts] => 124 [max_num_pages] => 42 [max_num_comment_pages] => 0 [is_single] => [is_preview] => [is_page] => [is_archive] => 1 [is_date] => [is_year] => [is_month] => [is_day] => [is_time] => [is_author] => [is_category] => 1 [is_tag] => [is_tax] => [is_search] => [is_feed] => [is_comment_feed] => [is_trackback] => [is_home] => [is_privacy_policy] => [is_404] => [is_embed] => [is_paged] => [is_admin] => [is_attachment] => [is_singular] => [is_robots] => [is_posts_page] => [is_post_type_archive] => [query_vars_hash:WP_Query:private] => d99303615b0c21aec82d26a177af1ee8 [query_vars_changed:WP_Query:private] => 1 [thumbnails_cached] => [stopwords:WP_Query:private] => [compat_fields:WP_Query:private] => Array ( [0] => query_vars_hash [1] => query_vars_changed ) [compat_methods:WP_Query:private] => Array ( [0] => init_query_flags [1] => parse_tax_query ) )
WP_Query Object ( [query] => Array ( [post_type] => post [post_status] => publish [cat] => 216 [orderby] => date [order] => desc [posts_per_page] => 3 [paged] => 1 [ignore_sticky_posts] => 1 ) [query_vars] => Array ( [post_type] => post [post_status] => publish [cat] => 216 [orderby] => date [order] => DESC [posts_per_page] => 3 [paged] => 1 [ignore_sticky_posts] => 1 [error] => [m] => [p] => 0 [post_parent] => [subpost] => [subpost_id] => [attachment] => [attachment_id] => 0 [name] => [static] => [pagename] => [page_id] => 0 [second] => [minute] => [hour] => [day] => 0 [monthnum] => 0 [year] => 0 [w] => 0 [category_name] => weekly-insecurity [tag] => [tag_id] => [author] => [author_name] => [feed] => [tb] => [meta_key] => [meta_value] => [preview] => [s] => [sentence] => [title] => [fields] => [menu_order] => [embed] => [category__in] => Array ( ) [category__not_in] => Array ( ) [category__and] => Array ( ) [post__in] => Array ( ) [post__not_in] => Array ( ) [post_name__in] => Array ( ) [tag__in] => Array ( ) [tag__not_in] => Array ( ) [tag__and] => Array ( ) [tag_slug__in] => Array ( ) [tag_slug__and] => Array ( ) [post_parent__in] => Array ( ) [post_parent__not_in] => Array ( ) [author__in] => Array ( ) [author__not_in] => Array ( ) [update_post_term_cache] => 1 [suppress_filters] => [cache_results] => 1 [lazy_load_term_meta] => 1 [update_post_meta_cache] => 1 [nopaging] => [comments_per_page] => 50 [no_found_rows] => ) [tax_query] => WP_Tax_Query Object ( [queries] => Array ( [0] => Array ( [taxonomy] => category [terms] => Array ( [0] => 216 ) [field] => term_id [operator] => IN [include_children] => 1 ) ) [relation] => AND [table_aliases:protected] => Array ( [0] => wpcm_term_relationships ) [queried_terms] => Array ( [category] => Array ( [terms] => Array ( [0] => 216 ) [field] => term_id ) ) [primary_table] => wpcm_posts [primary_id_column] => ID ) [meta_query] => WP_Meta_Query Object ( [queries] => Array ( ) [relation] => [meta_table] => [meta_id_column] => [primary_table] => [primary_id_column] => [table_aliases:protected] => Array ( ) [clauses:protected] => Array ( ) [has_or_relation:protected] => ) [date_query] => [request] => SELECT SQL_CALC_FOUND_ROWS wpcm_posts.ID FROM wpcm_posts LEFT JOIN wpcm_term_relationships ON (wpcm_posts.ID = wpcm_term_relationships.object_id) WHERE 1=1 AND ( wpcm_term_relationships.term_taxonomy_id IN (216) ) AND wpcm_posts.post_type = 'post' AND ((wpcm_posts.post_status = 'publish')) GROUP BY wpcm_posts.ID ORDER BY wpcm_posts.menu_order, wpcm_posts.post_date DESC LIMIT 0, 3 [posts] => Array ( [0] => WP_Post Object ( [ID] => 2052 [post_author] => 2 [post_date] => 2019-08-19 19:25:50 [post_date_gmt] => 2019-08-19 19:25:50 [post_content] =>

Welcome to This Week’s [in]Security. This week: PCI more on Key Blocks and some case studies. Breeches: Hy-Vee, Choice Hotels, State Farm, dating apps. Followups on Capital One, Equifax, AMCA, and First America. What may be the first mega breach of biometric data. Privacy commissioner on what to do if breached. Regaining trust. Facebook had people listening in on messenger calls too. NIST and cyberbudgets for small companies. Facebook biometric lawsuit. DEFCON is done and there are lots of new vulnerabilities and defensive techniques. Cybersecurity as practiced by experts and regular people. Google phasing out android passwords. Protecting 100M Lines of code. Escape room recruiting. Instagram 'fake' buttons. A skimmer detector. Ancient and horrible Windows CTF vulnerability. Browsers dropping XSS protections. EV certs. No honor among thieves. Sonic-Attack. Vanity plate risks. Brexit shortages. Stopping mass shooters and more.

Now here's this week’s selection of news, opinions, and research. Quickly skim annotated links organized by topic: compliance and payment security, breaches, regulation, bugs, privacy, hacking/malware, other security & risk, and more. We hope you enjoy and find them useful.

PCI Compliance and Payments

News and announcements relating to Payment Security, Payments, PCI, and Card Brands.

Breaches / Leaks

Covering breaches, leaks, data exposures, and their fallout.

Privacy

Articles about privacy related news, risks, and trends.

Laws & Regulations / Standards

News about laws, regulations, and standards affecting security, privacy,  technology, and public interest.

Defense / Techniques / Solutions

Covering developments and opportunities that may help improve security.

Bugs / Design Flaws / Vulnerabilities / Research

Articles about newly discovered vulnerabilities and research.

Hacking / Malware / Cybercrime / Exploitation

News covering active trends and events.

Other Security / Risk

Articles covering other types of risks.

Off-Topic / Science & Tech / Lighter Side

A variety of scientific, technical, historical, and more light-hearted news.

_______________________________________________________________

Becoming PCI Compliant can be difficult, so why not let Control Gap guide you. We are the largest dedicated PCI compliance company in Canada. Contact us today and learn more about how we can help you: Get PCI Compliant. Stay PCI Compliant.

[post_title] => This Week’s [in]Security – Issue 124 [post_excerpt] => [post_status] => publish [comment_status] => open [ping_status] => open [post_password] => [post_name] => this-weeks-insecurity-issue-124 [to_ping] => [pinged] => https://www.imperva.com/blog/clear-message-sent-dont-roll-the-dice-on-data-privacy-compliance/ https://micky.com.au/ransomware-fighter-on-the-run-after-costing-hacker-gangs-millions/ [post_modified] => 2019-08-19 19:25:53 [post_modified_gmt] => 2019-08-19 19:25:53 [post_content_filtered] => [post_parent] => 0 [guid] => http://controlgap.com/?p=2052 [menu_order] => 10 [post_type] => post [post_mime_type] => [comment_count] => 0 [filter] => raw ) [1] => WP_Post Object ( [ID] => 2051 [post_author] => 2 [post_date] => 2019-08-12 13:44:02 [post_date_gmt] => 2019-08-12 13:44:02 [post_content] =>

Welcome to This Week’s [in]Security. This week: PCI - the first listed SPoC solution, DSS v4 development. PCI, Visa, and Retail & Hospitality ISAC coordinate Magecart security alerts. Bypassing Visa contact-less limits. Capital One - 106M record cloud breach, arrest, analysis, investigations, and lawsuits. Breaches - CafePress, Mexican bookstore, POS supply chain, Amazon cloud backups, Honda, FormGet, ambulance and police services. Equifax short cash for payouts. GDPR used to breach GDPR. GDPR revenue impact. PSD2 and e-commerce. EU companies on hook for FB likes. The "going Dark" debate rages. Encryption in space is hard. Abusing the Blockchain. Vulnerabilities - small planes, DSLRs, more Spectre, SCADA, WPA3, Qualcomm-Android, 40+ Windows drivers, 200M IoT devices. No open instant message malware. Mobile carrier insecurity. Selling and buying insecure kit. War-Shipping. Pseudoscience social media risks. The TSA finds a missile launcher in checked luggage. And more.

Now here's this week’s selection of news, opinions, and research. Quickly skim annotated links organized by topic: compliance and payment security, breaches, regulation, bugs, privacy, hacking/malware, other security & risk, and more. We hope you enjoy and find them useful.

PCI Compliance and Payments

News and announcements relating to Payment Security, Payments, PCI, and Card Brands.

Breaches / Leaks

Covering breaches, leaks, data exposures, and their fallout.

Privacy

Articles about privacy related news, risks, and trends.

Laws & Regulations / Standards

News about laws, regulations, and standards affecting security, privacy,  technology, and public interest.

Defense / Techniques / Solutions

Covering developments and opportunities that may help improve security.

Bugs / Design Flaws / Vulnerabilities / Research

Articles about newly discovered vulnerabilities and research.

Hacking / Malware / Cybercrime / Exploitation

News covering active trends and events.

Other Security / Risk

Articles covering other types of risks.

Off-Topic / Science & Tech / Lighter Side

A variety of scientific, technical, historical, and more light-hearted news.

_______________________________________________________________

Becoming PCI Compliant can be difficult, so why not let Control Gap guide you. We are the largest dedicated PCI compliance company in Canada. Contact us today and learn more about how we can help you: Get PCI Compliant. Stay PCI Compliant.

[post_title] => This Week’s [in]Security – Issue 123 [post_excerpt] => [post_status] => publish [comment_status] => open [ping_status] => open [post_password] => [post_name] => this-weeks-insecurity-issue-123 [to_ping] => [pinged] => https://scienmag.com/recursive-language-and-modern-imagination-were-acquired-simultaneously-70000-years-ago/ [post_modified] => 2019-08-12 13:44:04 [post_modified_gmt] => 2019-08-12 13:44:04 [post_content_filtered] => [post_parent] => 0 [guid] => http://controlgap.com/?p=2051 [menu_order] => 11 [post_type] => post [post_mime_type] => [comment_count] => 0 [filter] => raw ) [2] => WP_Post Object ( [ID] => 2050 [post_author] => 2 [post_date] => 2019-07-29 01:29:42 [post_date_gmt] => 2019-07-29 01:29:42 [post_content] =>

Welcome to This Week’s [in]Security. This week: PCI: SSF FAQ document, Contactless COTS comment period, CPEs. Breaches: QuickBit, Robinhood. Breach followups: Citrix, Facebook, Equifax, AMCA. 2019 Breach Cost Study. Netflix film on Cambridge Analytica. Anonymization fails, changing the the encryption backdoor debate, fooling an anti-malware 'AI', weak AES keys, election security, Observatory for Internet Abuse, detecting fake images, the Cybersecurity Visuals Challenge, payroll phishing, a new look a the climate change problem, and more.

Now here's this week’s selection of news, opinions, and research. Quickly skim annotated links organized by topic: compliance and payment security, breaches, regulation, bugs, privacy, hacking/malware, other security & risk, and more. We hope you enjoy and find them useful.

This Week [in]Security will be on hiatus next week, issue 123 will return in two weeks.

PCI Compliance and Payments

News and announcements relating to Payment Security, Payments, PCI, and Card Brands.

Breaches / Leaks

Covering breaches, leaks, data exposures, and their fallout.

Privacy

Articles about privacy related news, risks, and trends.

Laws & Regulations / Standards

News about laws, regulations, and standards affecting security, privacy,  technology, and public interest.

Defense / Techniques / Solutions

Covering developments and opportunities that may help improve security.

Bugs / Design Flaws / Vulnerabilities / Research

Articles about newly discovered vulnerabilities and research.

Hacking / Malware / Cybercrime / Exploitation

News covering active trends and events.

Other Security / Risk

Articles covering other types of risks.

Off-Topic / Science & Tech / Lighter Side

A variety of scientific, technical, historical, and more light-hearted news.

_______________________________________________________________

Becoming PCI Compliant can be difficult, so why not let Control Gap guide you. We are the largest dedicated PCI compliance company in Canada. Contact us today and learn more about how we can help you: Get PCI Compliant. Stay PCI Compliant.

[post_title] => This Week’s [in]Security – Issue 122 [post_excerpt] => [post_status] => publish [comment_status] => open [ping_status] => open [post_password] => [post_name] => this-weeks-insecurity-issue-122 [to_ping] => [pinged] => [post_modified] => 2019-07-29 01:29:45 [post_modified_gmt] => 2019-07-29 01:29:45 [post_content_filtered] => [post_parent] => 0 [guid] => http://controlgap.com/?p=2050 [menu_order] => 12 [post_type] => post [post_mime_type] => [comment_count] => 0 [filter] => raw ) ) [post_count] => 3 [current_post] => -1 [in_the_loop] => [post] => WP_Post Object ( [ID] => 2052 [post_author] => 2 [post_date] => 2019-08-19 19:25:50 [post_date_gmt] => 2019-08-19 19:25:50 [post_content] =>

Welcome to This Week’s [in]Security. This week: PCI more on Key Blocks and some case studies. Breeches: Hy-Vee, Choice Hotels, State Farm, dating apps. Followups on Capital One, Equifax, AMCA, and First America. What may be the first mega breach of biometric data. Privacy commissioner on what to do if breached. Regaining trust. Facebook had people listening in on messenger calls too. NIST and cyberbudgets for small companies. Facebook biometric lawsuit. DEFCON is done and there are lots of new vulnerabilities and defensive techniques. Cybersecurity as practiced by experts and regular people. Google phasing out android passwords. Protecting 100M Lines of code. Escape room recruiting. Instagram 'fake' buttons. A skimmer detector. Ancient and horrible Windows CTF vulnerability. Browsers dropping XSS protections. EV certs. No honor among thieves. Sonic-Attack. Vanity plate risks. Brexit shortages. Stopping mass shooters and more.

Now here's this week’s selection of news, opinions, and research. Quickly skim annotated links organized by topic: compliance and payment security, breaches, regulation, bugs, privacy, hacking/malware, other security & risk, and more. We hope you enjoy and find them useful.

PCI Compliance and Payments

News and announcements relating to Payment Security, Payments, PCI, and Card Brands.

Breaches / Leaks

Covering breaches, leaks, data exposures, and their fallout.

Privacy

Articles about privacy related news, risks, and trends.

Laws & Regulations / Standards

News about laws, regulations, and standards affecting security, privacy,  technology, and public interest.

Defense / Techniques / Solutions

Covering developments and opportunities that may help improve security.

Bugs / Design Flaws / Vulnerabilities / Research

Articles about newly discovered vulnerabilities and research.

Hacking / Malware / Cybercrime / Exploitation

News covering active trends and events.

Other Security / Risk

Articles covering other types of risks.

Off-Topic / Science & Tech / Lighter Side

A variety of scientific, technical, historical, and more light-hearted news.

_______________________________________________________________

Becoming PCI Compliant can be difficult, so why not let Control Gap guide you. We are the largest dedicated PCI compliance company in Canada. Contact us today and learn more about how we can help you: Get PCI Compliant. Stay PCI Compliant.

[post_title] => This Week’s [in]Security – Issue 124 [post_excerpt] => [post_status] => publish [comment_status] => open [ping_status] => open [post_password] => [post_name] => this-weeks-insecurity-issue-124 [to_ping] => [pinged] => https://www.imperva.com/blog/clear-message-sent-dont-roll-the-dice-on-data-privacy-compliance/ https://micky.com.au/ransomware-fighter-on-the-run-after-costing-hacker-gangs-millions/ [post_modified] => 2019-08-19 19:25:53 [post_modified_gmt] => 2019-08-19 19:25:53 [post_content_filtered] => [post_parent] => 0 [guid] => http://controlgap.com/?p=2052 [menu_order] => 10 [post_type] => post [post_mime_type] => [comment_count] => 0 [filter] => raw ) [comment_count] => 0 [current_comment] => -1 [found_posts] => 124 [max_num_pages] => 42 [max_num_comment_pages] => 0 [is_single] => [is_preview] => [is_page] => [is_archive] => 1 [is_date] => [is_year] => [is_month] => [is_day] => [is_time] => [is_author] => [is_category] => 1 [is_tag] => [is_tax] => [is_search] => [is_feed] => [is_comment_feed] => [is_trackback] => [is_home] => [is_privacy_policy] => [is_404] => [is_embed] => [is_paged] => [is_admin] => [is_attachment] => [is_singular] => [is_robots] => [is_posts_page] => [is_post_type_archive] => [query_vars_hash:WP_Query:private] => d99303615b0c21aec82d26a177af1ee8 [query_vars_changed:WP_Query:private] => 1 [thumbnails_cached] => [stopwords:WP_Query:private] => [compat_fields:WP_Query:private] => Array ( [0] => query_vars_hash [1] => query_vars_changed ) [compat_methods:WP_Query:private] => Array ( [0] => init_query_flags [1] => parse_tax_query ) )
This Week’s [in]Security – Issue 124
August 19 2019

Welcome to This Week’s [in]Security. This week: PCI more on Key Blocks and some case studies. Breeches: Hy-Vee, Choice Hotels, State Farm, dating apps. Followups on Capital One, Equifax, AMCA, and First America. What may be the first mega breach of biometric data. Privacy commissioner on what to do if breached. Regaining trust. Facebook had

Read More
This Week’s [in]Security – Issue 123
August 12 2019

Welcome to This Week’s [in]Security. This week: PCI – the first listed SPoC solution, DSS v4 development. PCI, Visa, and Retail & Hospitality ISAC coordinate Magecart security alerts. Bypassing Visa contact-less limits. Capital One – 106M record cloud breach, arrest, analysis, investigations, and lawsuits. Breaches – CafePress, Mexican bookstore, POS supply chain, Amazon cloud backups,

Read More
This Week’s [in]Security – Issue 122
July 29 2019

Welcome to This Week’s [in]Security. This week: PCI: SSF FAQ document, Contactless COTS comment period, CPEs. Breaches: QuickBit, Robinhood. Breach followups: Citrix, Facebook, Equifax, AMCA. 2019 Breach Cost Study. Netflix film on Cambridge Analytica. Anonymization fails, changing the the encryption backdoor debate, fooling an anti-malware ‘AI’, weak AES keys, election security, Observatory for Internet Abuse,

Read More

e-newsletter

Want important PCI information delivered to you? Sign-up to our e-newsletter and be the first one to know about industry news and trend, offers and promotions.

×

Contact

×

PCI Pilot™ is coming soon!

Our highly-anticipated online tool will be launching very soon to make your PCI SAQ process quick and seamless.

Sign-up today and be among the first to know when PCI Pilot™ is live!