Weekly [in]Security

WP_Query Object ( [query] => Array ( [post_type] => post [post_status] => publish [cat] => 216 [orderby] => date [order] => desc [posts_per_page] => 3 [paged] => 1 [ignore_sticky_posts] => 1 ) [query_vars] => Array ( [post_type] => post [post_status] => publish [cat] => 216 [orderby] => date [order] => DESC [posts_per_page] => 3 [paged] => 1 [ignore_sticky_posts] => 1 [error] => [m] => [p] => 0 [post_parent] => [subpost] => [subpost_id] => [attachment] => [attachment_id] => 0 [name] => [static] => [pagename] => [page_id] => 0 [second] => [minute] => [hour] => [day] => 0 [monthnum] => 0 [year] => 0 [w] => 0 [category_name] => weekly-insecurity [tag] => [tag_id] => [author] => [author_name] => [feed] => [tb] => [meta_key] => [meta_value] => [preview] => [s] => [sentence] => [title] => [fields] => [menu_order] => [embed] => [category__in] => Array ( ) [category__not_in] => Array ( ) [category__and] => Array ( ) [post__in] => Array ( ) [post__not_in] => Array ( ) [post_name__in] => Array ( ) [tag__in] => Array ( ) [tag__not_in] => Array ( ) [tag__and] => Array ( ) [tag_slug__in] => Array ( ) [tag_slug__and] => Array ( ) [post_parent__in] => Array ( ) [post_parent__not_in] => Array ( ) [author__in] => Array ( ) [author__not_in] => Array ( ) [update_post_term_cache] => 1 [suppress_filters] => [cache_results] => 1 [lazy_load_term_meta] => 1 [update_post_meta_cache] => 1 [nopaging] => [comments_per_page] => 50 [no_found_rows] => ) [tax_query] => WP_Tax_Query Object ( [queries] => Array ( [0] => Array ( [taxonomy] => category [terms] => Array ( [0] => 216 ) [field] => term_id [operator] => IN [include_children] => 1 ) ) [relation] => AND [table_aliases:protected] => Array ( [0] => wpcm_term_relationships ) [queried_terms] => Array ( [category] => Array ( [terms] => Array ( [0] => 216 ) [field] => term_id ) ) [primary_table] => wpcm_posts [primary_id_column] => ID ) [meta_query] => WP_Meta_Query Object ( [queries] => Array ( ) [relation] => [meta_table] => [meta_id_column] => [primary_table] => [primary_id_column] => [table_aliases:protected] => Array ( ) [clauses:protected] => Array ( ) [has_or_relation:protected] => ) [date_query] => [request] => SELECT SQL_CALC_FOUND_ROWS wpcm_posts.ID FROM wpcm_posts LEFT JOIN wpcm_term_relationships ON (wpcm_posts.ID = wpcm_term_relationships.object_id) WHERE 1=1 AND ( wpcm_term_relationships.term_taxonomy_id IN (216) ) AND wpcm_posts.post_type = 'post' AND ((wpcm_posts.post_status = 'publish')) GROUP BY wpcm_posts.ID ORDER BY wpcm_posts.menu_order, wpcm_posts.post_date DESC LIMIT 0, 3 [posts] => Array ( [0] => WP_Post Object ( [ID] => 2062 [post_author] => 2 [post_date] => 2019-09-16 11:58:20 [post_date_gmt] => 2019-09-16 11:58:20 [post_content] =>

Welcome to This Week’s [in]Security. This week: PCI SSF & SSLC Reporting Templates. PIN Technical (mandatory) FAQ update. Photographic memory breach. 200M+ in DealerLeads, Verizon, and Monster (jobs) breaches. Hospital pager PHI leak. Facebook and sex. Widening the encryption debate. Canada Cyber Safe? Copyright take-down backfires. Every state is investigating Google. Web scraping legality. Cyber skills gap. SD-WAN security. Encrypted DNS. Cyber insurance. Snake-oil indicators. BlueKeep is out there. Flashlight apps really? NetCat side channel attack. SIMjacker. Monetizing IoT attacks. RDP , passwords, and ransomware. Damaging the power grid. Spies. ATM EMV cash-out. Vanishing payroll. Interesting Crypto conference take-aways. Pentesting gone wrong. And more.

Now here's this week’s selection of news, opinions, and research. Quickly skim annotated links organized by topic: compliance and payment security, breaches, regulation, bugs, privacy, hacking/malware, other security & risk, and more. We hope you enjoy and find them useful.

PCI Compliance and Payments

News and announcements relating to Payment Security, Payments, PCI, and Card Brands.

Breaches / Leaks

Covering breaches, leaks, data exposures, and their fallout.

Privacy

Articles about privacy related news, risks, and trends.

Laws & Regulations / Standards

News about laws, regulations, and standards affecting security, privacy,  technology, and public interest.

Defense / Techniques / Solutions

Covering developments and opportunities that may help improve security.

Bugs / Design Flaws / Vulnerabilities / Research

Articles about newly discovered vulnerabilities and research.

Hacking / Malware / Cybercrime / Exploitation

News covering active trends and events.

Other Security / Risk

Articles covering other types of risks.

Off-Topic / Science & Tech / Lighter Side

A variety of scientific, technical, historical, and more light-hearted news.

_______________________________________________________________

Becoming PCI Compliant can be difficult, so why not let Control Gap guide you. We are the largest dedicated PCI compliance company in Canada. Contact us today and learn more about how we can help you: Get PCI Compliant. Stay PCI Compliant.

[post_title] => This Week’s [in]Security – Issue 128 [post_excerpt] => [post_status] => publish [comment_status] => open [ping_status] => open [post_password] => [post_name] => this-weeks-insecurity-issue-128 [to_ping] => [pinged] => https://scienmag.com/since-cooling-demand-is-primarily-driven-by-the-sun-could-it-also-be-powered-by-the-sun/ https://blog.trailofbits.com/2019/09/11/crypto-2019-takeaways/ [post_modified] => 2019-09-16 12:12:06 [post_modified_gmt] => 2019-09-16 12:12:06 [post_content_filtered] => [post_parent] => 0 [guid] => http://controlgap.com/?p=2062 [menu_order] => 10 [post_type] => post [post_mime_type] => [comment_count] => 0 [filter] => raw ) [1] => WP_Post Object ( [ID] => 2061 [post_author] => 2 [post_date] => 2019-09-09 02:08:19 [post_date_gmt] => 2019-09-09 02:08:19 [post_content] =>

Welcome to This Week’s [in]Security. This week: new PCI FAQ on PIN, EMV reduces fraud by 97%. Facebook: another massive leak, changing facial recognition, and dating privacy worries. Breaches at Yves Rocher, Teletext Holidays ,DK-Lok. 19M Canadaian impacted by breaches. Google/YouTube fined $170M. Hidden pages bypassing GDPR. DHS-FBI watchlist unconstitutional. New DOD contractor security standards. NIST cyber resilience. Frank Abagnale on privacy. Deflecting an Asteroid. Twitter stops SMS. QR code insecurity. GPS trackers with the worst default password. Deep fake voice fraud score $243K. NTSB and Tesla's Auto-pilot. Refrigerated food and power failures. US electric grid attacked. Going blind from junk food. Declassification by tweet. Tracing disinformation. US reverses two bans on foreigners. And more.

Now here's this week’s selection of news, opinions, and research. Quickly skim annotated links organized by topic: compliance and payment security, breaches, regulation, bugs, privacy, hacking/malware, other security & risk, and more. We hope you enjoy and find them useful.

PCI Compliance and Payments

News and announcements relating to Payment Security, Payments, PCI, and Card Brands.

Breaches / Leaks

Covering breaches, leaks, data exposures, and their fallout.

Privacy

Articles about privacy related news, risks, and trends.

Laws & Regulations / Standards

News about laws, regulations, and standards affecting security, privacy,  technology, and public interest.

Defense / Techniques / Solutions

Covering developments and opportunities that may help improve security.

Bugs / Design Flaws / Vulnerabilities / Research

Articles about newly discovered vulnerabilities and research.

Hacking / Malware / Cybercrime / Exploitation

News covering active trends and events.

Other Security / Risk

Articles covering other types of risks.

Off-Topic / Science & Tech / Lighter Side

A variety of scientific, technical, historical, and more light-hearted news.

_______________________________________________________________

Becoming PCI Compliant can be difficult, so why not let Control Gap guide you. We are the largest dedicated PCI compliance company in Canada. Contact us today and learn more about how we can help you: Get PCI Compliant. Stay PCI Compliant.

[post_title] => This Week’s [in]Security – Issue 127 [post_excerpt] => [post_status] => publish [comment_status] => open [ping_status] => open [post_password] => [post_name] => this-weeks-insecurity-issue-127 [to_ping] => [pinged] => https://scienmag.com/temple-scientists-identify-promising-new-target-to-combat-alzheimers-disease/ [post_modified] => 2019-09-09 02:08:21 [post_modified_gmt] => 2019-09-09 02:08:21 [post_content_filtered] => [post_parent] => 0 [guid] => http://controlgap.com/?p=2061 [menu_order] => 11 [post_type] => post [post_mime_type] => [comment_count] => 0 [filter] => raw ) [2] => WP_Post Object ( [ID] => 2057 [post_author] => 2 [post_date] => 2019-09-03 21:59:13 [post_date_gmt] => 2019-09-03 21:59:13 [post_content] =>

Welcome to This Week’s [in]Security. This week: PCI: more case studies and key blocks pt-3. More Magecart and click-jacking. Breaches: Imperva, Foxit, and MasterCard Germany. Privacy: bananas and credit cards, warrant-less GPS trackers, Ring doorbells and the police. More on the crypto-war debates. Denied entry to US based on other people’s social media. Facebook wins a ruling. Crime & jurisdiction in outer space. NIST updates: TLS and Supply chains. TDE key rotation. MFA 99% effective. Deep dive into iOS exploit chains. Lost Facebook private key signing apps in the wild. Ad malware infects Cam Scanner. Open wide and say ransomware. Back to school with ransomware. iPhone and Android watering hole attack going on for years. Twitter CEO's account compromised. Malfunctioning voting machine flips votes. Controversial encryption. And more.

Now here's this week’s selection of news, opinions, and research. Quickly skim annotated links organized by topic: compliance and payment security, breaches, regulation, bugs, privacy, hacking/malware, other security & risk, and more. We hope you enjoy and find them useful.

PCI Compliance and Payments

News and announcements relating to Payment Security, Payments, PCI, and Card Brands.

Breaches / Leaks

Covering breaches, leaks, data exposures, and their fallout.

Privacy

Articles about privacy related news, risks, and trends.

Laws & Regulations / Standards

News about laws, regulations, and standards affecting security, privacy,  technology, and public interest.

Defense / Techniques / Solutions

Covering developments and opportunities that may help improve security.

Bugs / Design Flaws / Vulnerabilities / Research

Articles about newly discovered vulnerabilities and research.

Hacking / Malware / Cybercrime / Exploitation

News covering active trends and events.

Other Security / Risk

Articles covering other types of risks.

Off-Topic / Science & Tech / Lighter Side

A variety of scientific, technical, historical, and more light-hearted news.

_______________________________________________________________

Becoming PCI Compliant can be difficult, so why not let Control Gap guide you. We are the largest dedicated PCI compliance company in Canada. Contact us today and learn more about how we can help you: Get PCI Compliant. Stay PCI Compliant.

[post_title] => This Week’s [in]Security – Issue 126 [post_excerpt] => [post_status] => publish [comment_status] => open [ping_status] => open [post_password] => [post_name] => this-weeks-insecurity-issue-126 [to_ping] => [pinged] => [post_modified] => 2019-09-03 21:59:15 [post_modified_gmt] => 2019-09-03 21:59:15 [post_content_filtered] => [post_parent] => 0 [guid] => http://controlgap.com/?p=2057 [menu_order] => 13 [post_type] => post [post_mime_type] => [comment_count] => 0 [filter] => raw ) ) [post_count] => 3 [current_post] => -1 [in_the_loop] => [post] => WP_Post Object ( [ID] => 2062 [post_author] => 2 [post_date] => 2019-09-16 11:58:20 [post_date_gmt] => 2019-09-16 11:58:20 [post_content] =>

Welcome to This Week’s [in]Security. This week: PCI SSF & SSLC Reporting Templates. PIN Technical (mandatory) FAQ update. Photographic memory breach. 200M+ in DealerLeads, Verizon, and Monster (jobs) breaches. Hospital pager PHI leak. Facebook and sex. Widening the encryption debate. Canada Cyber Safe? Copyright take-down backfires. Every state is investigating Google. Web scraping legality. Cyber skills gap. SD-WAN security. Encrypted DNS. Cyber insurance. Snake-oil indicators. BlueKeep is out there. Flashlight apps really? NetCat side channel attack. SIMjacker. Monetizing IoT attacks. RDP , passwords, and ransomware. Damaging the power grid. Spies. ATM EMV cash-out. Vanishing payroll. Interesting Crypto conference take-aways. Pentesting gone wrong. And more.

Now here's this week’s selection of news, opinions, and research. Quickly skim annotated links organized by topic: compliance and payment security, breaches, regulation, bugs, privacy, hacking/malware, other security & risk, and more. We hope you enjoy and find them useful.

PCI Compliance and Payments

News and announcements relating to Payment Security, Payments, PCI, and Card Brands.

Breaches / Leaks

Covering breaches, leaks, data exposures, and their fallout.

Privacy

Articles about privacy related news, risks, and trends.

Laws & Regulations / Standards

News about laws, regulations, and standards affecting security, privacy,  technology, and public interest.

Defense / Techniques / Solutions

Covering developments and opportunities that may help improve security.

Bugs / Design Flaws / Vulnerabilities / Research

Articles about newly discovered vulnerabilities and research.

Hacking / Malware / Cybercrime / Exploitation

News covering active trends and events.

Other Security / Risk

Articles covering other types of risks.

Off-Topic / Science & Tech / Lighter Side

A variety of scientific, technical, historical, and more light-hearted news.

_______________________________________________________________

Becoming PCI Compliant can be difficult, so why not let Control Gap guide you. We are the largest dedicated PCI compliance company in Canada. Contact us today and learn more about how we can help you: Get PCI Compliant. Stay PCI Compliant.

[post_title] => This Week’s [in]Security – Issue 128 [post_excerpt] => [post_status] => publish [comment_status] => open [ping_status] => open [post_password] => [post_name] => this-weeks-insecurity-issue-128 [to_ping] => [pinged] => https://scienmag.com/since-cooling-demand-is-primarily-driven-by-the-sun-could-it-also-be-powered-by-the-sun/ https://blog.trailofbits.com/2019/09/11/crypto-2019-takeaways/ [post_modified] => 2019-09-16 12:12:06 [post_modified_gmt] => 2019-09-16 12:12:06 [post_content_filtered] => [post_parent] => 0 [guid] => http://controlgap.com/?p=2062 [menu_order] => 10 [post_type] => post [post_mime_type] => [comment_count] => 0 [filter] => raw ) [comment_count] => 0 [current_comment] => -1 [found_posts] => 128 [max_num_pages] => 43 [max_num_comment_pages] => 0 [is_single] => [is_preview] => [is_page] => [is_archive] => 1 [is_date] => [is_year] => [is_month] => [is_day] => [is_time] => [is_author] => [is_category] => 1 [is_tag] => [is_tax] => [is_search] => [is_feed] => [is_comment_feed] => [is_trackback] => [is_home] => [is_privacy_policy] => [is_404] => [is_embed] => [is_paged] => [is_admin] => [is_attachment] => [is_singular] => [is_robots] => [is_posts_page] => [is_post_type_archive] => [query_vars_hash:WP_Query:private] => d99303615b0c21aec82d26a177af1ee8 [query_vars_changed:WP_Query:private] => 1 [thumbnails_cached] => [stopwords:WP_Query:private] => [compat_fields:WP_Query:private] => Array ( [0] => query_vars_hash [1] => query_vars_changed ) [compat_methods:WP_Query:private] => Array ( [0] => init_query_flags [1] => parse_tax_query ) )
WP_Query Object ( [query] => Array ( [post_type] => post [post_status] => publish [cat] => 216 [orderby] => date [order] => desc [posts_per_page] => 3 [paged] => 1 [ignore_sticky_posts] => 1 ) [query_vars] => Array ( [post_type] => post [post_status] => publish [cat] => 216 [orderby] => date [order] => DESC [posts_per_page] => 3 [paged] => 1 [ignore_sticky_posts] => 1 [error] => [m] => [p] => 0 [post_parent] => [subpost] => [subpost_id] => [attachment] => [attachment_id] => 0 [name] => [static] => [pagename] => [page_id] => 0 [second] => [minute] => [hour] => [day] => 0 [monthnum] => 0 [year] => 0 [w] => 0 [category_name] => weekly-insecurity [tag] => [tag_id] => [author] => [author_name] => [feed] => [tb] => [meta_key] => [meta_value] => [preview] => [s] => [sentence] => [title] => [fields] => [menu_order] => [embed] => [category__in] => Array ( ) [category__not_in] => Array ( ) [category__and] => Array ( ) [post__in] => Array ( ) [post__not_in] => Array ( ) [post_name__in] => Array ( ) [tag__in] => Array ( ) [tag__not_in] => Array ( ) [tag__and] => Array ( ) [tag_slug__in] => Array ( ) [tag_slug__and] => Array ( ) [post_parent__in] => Array ( ) [post_parent__not_in] => Array ( ) [author__in] => Array ( ) [author__not_in] => Array ( ) [update_post_term_cache] => 1 [suppress_filters] => [cache_results] => 1 [lazy_load_term_meta] => 1 [update_post_meta_cache] => 1 [nopaging] => [comments_per_page] => 50 [no_found_rows] => ) [tax_query] => WP_Tax_Query Object ( [queries] => Array ( [0] => Array ( [taxonomy] => category [terms] => Array ( [0] => 216 ) [field] => term_id [operator] => IN [include_children] => 1 ) ) [relation] => AND [table_aliases:protected] => Array ( [0] => wpcm_term_relationships ) [queried_terms] => Array ( [category] => Array ( [terms] => Array ( [0] => 216 ) [field] => term_id ) ) [primary_table] => wpcm_posts [primary_id_column] => ID ) [meta_query] => WP_Meta_Query Object ( [queries] => Array ( ) [relation] => [meta_table] => [meta_id_column] => [primary_table] => [primary_id_column] => [table_aliases:protected] => Array ( ) [clauses:protected] => Array ( ) [has_or_relation:protected] => ) [date_query] => [request] => SELECT SQL_CALC_FOUND_ROWS wpcm_posts.ID FROM wpcm_posts LEFT JOIN wpcm_term_relationships ON (wpcm_posts.ID = wpcm_term_relationships.object_id) WHERE 1=1 AND ( wpcm_term_relationships.term_taxonomy_id IN (216) ) AND wpcm_posts.post_type = 'post' AND ((wpcm_posts.post_status = 'publish')) GROUP BY wpcm_posts.ID ORDER BY wpcm_posts.menu_order, wpcm_posts.post_date DESC LIMIT 0, 3 [posts] => Array ( [0] => WP_Post Object ( [ID] => 2062 [post_author] => 2 [post_date] => 2019-09-16 11:58:20 [post_date_gmt] => 2019-09-16 11:58:20 [post_content] =>

Welcome to This Week’s [in]Security. This week: PCI SSF & SSLC Reporting Templates. PIN Technical (mandatory) FAQ update. Photographic memory breach. 200M+ in DealerLeads, Verizon, and Monster (jobs) breaches. Hospital pager PHI leak. Facebook and sex. Widening the encryption debate. Canada Cyber Safe? Copyright take-down backfires. Every state is investigating Google. Web scraping legality. Cyber skills gap. SD-WAN security. Encrypted DNS. Cyber insurance. Snake-oil indicators. BlueKeep is out there. Flashlight apps really? NetCat side channel attack. SIMjacker. Monetizing IoT attacks. RDP , passwords, and ransomware. Damaging the power grid. Spies. ATM EMV cash-out. Vanishing payroll. Interesting Crypto conference take-aways. Pentesting gone wrong. And more.

Now here's this week’s selection of news, opinions, and research. Quickly skim annotated links organized by topic: compliance and payment security, breaches, regulation, bugs, privacy, hacking/malware, other security & risk, and more. We hope you enjoy and find them useful.

PCI Compliance and Payments

News and announcements relating to Payment Security, Payments, PCI, and Card Brands.

Breaches / Leaks

Covering breaches, leaks, data exposures, and their fallout.

Privacy

Articles about privacy related news, risks, and trends.

Laws & Regulations / Standards

News about laws, regulations, and standards affecting security, privacy,  technology, and public interest.

Defense / Techniques / Solutions

Covering developments and opportunities that may help improve security.

Bugs / Design Flaws / Vulnerabilities / Research

Articles about newly discovered vulnerabilities and research.

Hacking / Malware / Cybercrime / Exploitation

News covering active trends and events.

Other Security / Risk

Articles covering other types of risks.

Off-Topic / Science & Tech / Lighter Side

A variety of scientific, technical, historical, and more light-hearted news.

_______________________________________________________________

Becoming PCI Compliant can be difficult, so why not let Control Gap guide you. We are the largest dedicated PCI compliance company in Canada. Contact us today and learn more about how we can help you: Get PCI Compliant. Stay PCI Compliant.

[post_title] => This Week’s [in]Security – Issue 128 [post_excerpt] => [post_status] => publish [comment_status] => open [ping_status] => open [post_password] => [post_name] => this-weeks-insecurity-issue-128 [to_ping] => [pinged] => https://scienmag.com/since-cooling-demand-is-primarily-driven-by-the-sun-could-it-also-be-powered-by-the-sun/ https://blog.trailofbits.com/2019/09/11/crypto-2019-takeaways/ [post_modified] => 2019-09-16 12:12:06 [post_modified_gmt] => 2019-09-16 12:12:06 [post_content_filtered] => [post_parent] => 0 [guid] => http://controlgap.com/?p=2062 [menu_order] => 10 [post_type] => post [post_mime_type] => [comment_count] => 0 [filter] => raw ) [1] => WP_Post Object ( [ID] => 2061 [post_author] => 2 [post_date] => 2019-09-09 02:08:19 [post_date_gmt] => 2019-09-09 02:08:19 [post_content] =>

Welcome to This Week’s [in]Security. This week: new PCI FAQ on PIN, EMV reduces fraud by 97%. Facebook: another massive leak, changing facial recognition, and dating privacy worries. Breaches at Yves Rocher, Teletext Holidays ,DK-Lok. 19M Canadaian impacted by breaches. Google/YouTube fined $170M. Hidden pages bypassing GDPR. DHS-FBI watchlist unconstitutional. New DOD contractor security standards. NIST cyber resilience. Frank Abagnale on privacy. Deflecting an Asteroid. Twitter stops SMS. QR code insecurity. GPS trackers with the worst default password. Deep fake voice fraud score $243K. NTSB and Tesla's Auto-pilot. Refrigerated food and power failures. US electric grid attacked. Going blind from junk food. Declassification by tweet. Tracing disinformation. US reverses two bans on foreigners. And more.

Now here's this week’s selection of news, opinions, and research. Quickly skim annotated links organized by topic: compliance and payment security, breaches, regulation, bugs, privacy, hacking/malware, other security & risk, and more. We hope you enjoy and find them useful.

PCI Compliance and Payments

News and announcements relating to Payment Security, Payments, PCI, and Card Brands.

Breaches / Leaks

Covering breaches, leaks, data exposures, and their fallout.

Privacy

Articles about privacy related news, risks, and trends.

Laws & Regulations / Standards

News about laws, regulations, and standards affecting security, privacy,  technology, and public interest.

Defense / Techniques / Solutions

Covering developments and opportunities that may help improve security.

Bugs / Design Flaws / Vulnerabilities / Research

Articles about newly discovered vulnerabilities and research.

Hacking / Malware / Cybercrime / Exploitation

News covering active trends and events.

Other Security / Risk

Articles covering other types of risks.

Off-Topic / Science & Tech / Lighter Side

A variety of scientific, technical, historical, and more light-hearted news.

_______________________________________________________________

Becoming PCI Compliant can be difficult, so why not let Control Gap guide you. We are the largest dedicated PCI compliance company in Canada. Contact us today and learn more about how we can help you: Get PCI Compliant. Stay PCI Compliant.

[post_title] => This Week’s [in]Security – Issue 127 [post_excerpt] => [post_status] => publish [comment_status] => open [ping_status] => open [post_password] => [post_name] => this-weeks-insecurity-issue-127 [to_ping] => [pinged] => https://scienmag.com/temple-scientists-identify-promising-new-target-to-combat-alzheimers-disease/ [post_modified] => 2019-09-09 02:08:21 [post_modified_gmt] => 2019-09-09 02:08:21 [post_content_filtered] => [post_parent] => 0 [guid] => http://controlgap.com/?p=2061 [menu_order] => 11 [post_type] => post [post_mime_type] => [comment_count] => 0 [filter] => raw ) [2] => WP_Post Object ( [ID] => 2057 [post_author] => 2 [post_date] => 2019-09-03 21:59:13 [post_date_gmt] => 2019-09-03 21:59:13 [post_content] =>

Welcome to This Week’s [in]Security. This week: PCI: more case studies and key blocks pt-3. More Magecart and click-jacking. Breaches: Imperva, Foxit, and MasterCard Germany. Privacy: bananas and credit cards, warrant-less GPS trackers, Ring doorbells and the police. More on the crypto-war debates. Denied entry to US based on other people’s social media. Facebook wins a ruling. Crime & jurisdiction in outer space. NIST updates: TLS and Supply chains. TDE key rotation. MFA 99% effective. Deep dive into iOS exploit chains. Lost Facebook private key signing apps in the wild. Ad malware infects Cam Scanner. Open wide and say ransomware. Back to school with ransomware. iPhone and Android watering hole attack going on for years. Twitter CEO's account compromised. Malfunctioning voting machine flips votes. Controversial encryption. And more.

Now here's this week’s selection of news, opinions, and research. Quickly skim annotated links organized by topic: compliance and payment security, breaches, regulation, bugs, privacy, hacking/malware, other security & risk, and more. We hope you enjoy and find them useful.

PCI Compliance and Payments

News and announcements relating to Payment Security, Payments, PCI, and Card Brands.

Breaches / Leaks

Covering breaches, leaks, data exposures, and their fallout.

Privacy

Articles about privacy related news, risks, and trends.

Laws & Regulations / Standards

News about laws, regulations, and standards affecting security, privacy,  technology, and public interest.

Defense / Techniques / Solutions

Covering developments and opportunities that may help improve security.

Bugs / Design Flaws / Vulnerabilities / Research

Articles about newly discovered vulnerabilities and research.

Hacking / Malware / Cybercrime / Exploitation

News covering active trends and events.

Other Security / Risk

Articles covering other types of risks.

Off-Topic / Science & Tech / Lighter Side

A variety of scientific, technical, historical, and more light-hearted news.

_______________________________________________________________

Becoming PCI Compliant can be difficult, so why not let Control Gap guide you. We are the largest dedicated PCI compliance company in Canada. Contact us today and learn more about how we can help you: Get PCI Compliant. Stay PCI Compliant.

[post_title] => This Week’s [in]Security – Issue 126 [post_excerpt] => [post_status] => publish [comment_status] => open [ping_status] => open [post_password] => [post_name] => this-weeks-insecurity-issue-126 [to_ping] => [pinged] => [post_modified] => 2019-09-03 21:59:15 [post_modified_gmt] => 2019-09-03 21:59:15 [post_content_filtered] => [post_parent] => 0 [guid] => http://controlgap.com/?p=2057 [menu_order] => 13 [post_type] => post [post_mime_type] => [comment_count] => 0 [filter] => raw ) ) [post_count] => 3 [current_post] => -1 [in_the_loop] => [post] => WP_Post Object ( [ID] => 2062 [post_author] => 2 [post_date] => 2019-09-16 11:58:20 [post_date_gmt] => 2019-09-16 11:58:20 [post_content] =>

Welcome to This Week’s [in]Security. This week: PCI SSF & SSLC Reporting Templates. PIN Technical (mandatory) FAQ update. Photographic memory breach. 200M+ in DealerLeads, Verizon, and Monster (jobs) breaches. Hospital pager PHI leak. Facebook and sex. Widening the encryption debate. Canada Cyber Safe? Copyright take-down backfires. Every state is investigating Google. Web scraping legality. Cyber skills gap. SD-WAN security. Encrypted DNS. Cyber insurance. Snake-oil indicators. BlueKeep is out there. Flashlight apps really? NetCat side channel attack. SIMjacker. Monetizing IoT attacks. RDP , passwords, and ransomware. Damaging the power grid. Spies. ATM EMV cash-out. Vanishing payroll. Interesting Crypto conference take-aways. Pentesting gone wrong. And more.

Now here's this week’s selection of news, opinions, and research. Quickly skim annotated links organized by topic: compliance and payment security, breaches, regulation, bugs, privacy, hacking/malware, other security & risk, and more. We hope you enjoy and find them useful.

PCI Compliance and Payments

News and announcements relating to Payment Security, Payments, PCI, and Card Brands.

Breaches / Leaks

Covering breaches, leaks, data exposures, and their fallout.

Privacy

Articles about privacy related news, risks, and trends.

Laws & Regulations / Standards

News about laws, regulations, and standards affecting security, privacy,  technology, and public interest.

Defense / Techniques / Solutions

Covering developments and opportunities that may help improve security.

Bugs / Design Flaws / Vulnerabilities / Research

Articles about newly discovered vulnerabilities and research.

Hacking / Malware / Cybercrime / Exploitation

News covering active trends and events.

Other Security / Risk

Articles covering other types of risks.

Off-Topic / Science & Tech / Lighter Side

A variety of scientific, technical, historical, and more light-hearted news.

_______________________________________________________________

Becoming PCI Compliant can be difficult, so why not let Control Gap guide you. We are the largest dedicated PCI compliance company in Canada. Contact us today and learn more about how we can help you: Get PCI Compliant. Stay PCI Compliant.

[post_title] => This Week’s [in]Security – Issue 128 [post_excerpt] => [post_status] => publish [comment_status] => open [ping_status] => open [post_password] => [post_name] => this-weeks-insecurity-issue-128 [to_ping] => [pinged] => https://scienmag.com/since-cooling-demand-is-primarily-driven-by-the-sun-could-it-also-be-powered-by-the-sun/ https://blog.trailofbits.com/2019/09/11/crypto-2019-takeaways/ [post_modified] => 2019-09-16 12:12:06 [post_modified_gmt] => 2019-09-16 12:12:06 [post_content_filtered] => [post_parent] => 0 [guid] => http://controlgap.com/?p=2062 [menu_order] => 10 [post_type] => post [post_mime_type] => [comment_count] => 0 [filter] => raw ) [comment_count] => 0 [current_comment] => -1 [found_posts] => 128 [max_num_pages] => 43 [max_num_comment_pages] => 0 [is_single] => [is_preview] => [is_page] => [is_archive] => 1 [is_date] => [is_year] => [is_month] => [is_day] => [is_time] => [is_author] => [is_category] => 1 [is_tag] => [is_tax] => [is_search] => [is_feed] => [is_comment_feed] => [is_trackback] => [is_home] => [is_privacy_policy] => [is_404] => [is_embed] => [is_paged] => [is_admin] => [is_attachment] => [is_singular] => [is_robots] => [is_posts_page] => [is_post_type_archive] => [query_vars_hash:WP_Query:private] => d99303615b0c21aec82d26a177af1ee8 [query_vars_changed:WP_Query:private] => 1 [thumbnails_cached] => [stopwords:WP_Query:private] => [compat_fields:WP_Query:private] => Array ( [0] => query_vars_hash [1] => query_vars_changed ) [compat_methods:WP_Query:private] => Array ( [0] => init_query_flags [1] => parse_tax_query ) )
This Week’s [in]Security – Issue 128
September 16 2019

Welcome to This Week’s [in]Security. This week: PCI SSF & SSLC Reporting Templates. PIN Technical (mandatory) FAQ update. Photographic memory breach. 200M+ in DealerLeads, Verizon, and Monster (jobs) breaches. Hospital pager PHI leak. Facebook and sex. Widening the encryption debate. Canada Cyber Safe? Copyright take-down backfires. Every state is investigating Google. Web scraping legality. Cyber

Read More
This Week’s [in]Security – Issue 127
September 9 2019

Welcome to This Week’s [in]Security. This week: new PCI FAQ on PIN, EMV reduces fraud by 97%. Facebook: another massive leak, changing facial recognition, and dating privacy worries. Breaches at Yves Rocher, Teletext Holidays ,DK-Lok. 19M Canadaian impacted by breaches. Google/YouTube fined $170M. Hidden pages bypassing GDPR. DHS-FBI watchlist unconstitutional. New DOD contractor security standards.

Read More
This Week’s [in]Security – Issue 126
September 3 2019

Welcome to This Week’s [in]Security. This week: PCI: more case studies and key blocks pt-3. More Magecart and click-jacking. Breaches: Imperva, Foxit, and MasterCard Germany. Privacy: bananas and credit cards, warrant-less GPS trackers, Ring doorbells and the police. More on the crypto-war debates. Denied entry to US based on other people’s social media. Facebook wins

Read More

e-newsletter

Want important PCI information delivered to you? Sign-up to our e-newsletter and be the first one to know about industry news and trend, offers and promotions.

×

Contact

×

PCI Pilot™ is coming soon!

Our highly-anticipated online tool will be launching very soon to make your PCI SAQ process quick and seamless.

Sign-up today and be among the first to know when PCI Pilot™ is live!