Weekly [in]Security

WP_Query Object ( [query] => Array ( [post_type] => post [post_status] => publish [cat] => 216 [orderby] => date [order] => desc [posts_per_page] => 3 [paged] => 2 [ignore_sticky_posts] => 1 ) [query_vars] => Array ( [post_type] => post [post_status] => publish [cat] => 216 [orderby] => date [order] => DESC [posts_per_page] => 3 [paged] => 2 [ignore_sticky_posts] => 1 [error] => [m] => [p] => 0 [post_parent] => [subpost] => [subpost_id] => [attachment] => [attachment_id] => 0 [name] => [pagename] => [page_id] => 0 [second] => [minute] => [hour] => [day] => 0 [monthnum] => 0 [year] => 0 [w] => 0 [category_name] => weekly-insecurity [tag] => [tag_id] => [author] => [author_name] => [feed] => [tb] => [meta_key] => [meta_value] => [preview] => [s] => [sentence] => [title] => [fields] => [menu_order] => [embed] => [category__in] => Array ( ) [category__not_in] => Array ( ) [category__and] => Array ( ) [post__in] => Array ( ) [post__not_in] => Array ( ) [post_name__in] => Array ( ) [tag__in] => Array ( ) [tag__not_in] => Array ( ) [tag__and] => Array ( ) [tag_slug__in] => Array ( ) [tag_slug__and] => Array ( ) [post_parent__in] => Array ( ) [post_parent__not_in] => Array ( ) [author__in] => Array ( ) [author__not_in] => Array ( ) [update_post_term_cache] => 1 [suppress_filters] => [cache_results] => 1 [lazy_load_term_meta] => 1 [update_post_meta_cache] => 1 [nopaging] => [comments_per_page] => 50 [no_found_rows] => ) [tax_query] => WP_Tax_Query Object ( [queries] => Array ( [0] => Array ( [taxonomy] => category [terms] => Array ( [0] => 216 ) [field] => term_id [operator] => IN [include_children] => 1 ) ) [relation] => AND [table_aliases:protected] => Array ( [0] => wpcm_term_relationships ) [queried_terms] => Array ( [category] => Array ( [terms] => Array ( [0] => 216 ) [field] => term_id ) ) [primary_table] => wpcm_posts [primary_id_column] => ID ) [meta_query] => WP_Meta_Query Object ( [queries] => Array ( ) [relation] => [meta_table] => [meta_id_column] => [primary_table] => [primary_id_column] => [table_aliases:protected] => Array ( ) [clauses:protected] => Array ( ) [has_or_relation:protected] => ) [date_query] => [request] => SELECT SQL_CALC_FOUND_ROWS wpcm_posts.ID FROM wpcm_posts LEFT JOIN wpcm_term_relationships ON (wpcm_posts.ID = wpcm_term_relationships.object_id) WHERE 1=1 AND ( wpcm_term_relationships.term_taxonomy_id IN (216) ) AND wpcm_posts.post_type = 'post' AND ((wpcm_posts.post_status = 'publish')) GROUP BY wpcm_posts.ID ORDER BY wpcm_posts.menu_order, wpcm_posts.post_date DESC LIMIT 3, 3 [posts] => Array ( [0] => WP_Post Object ( [ID] => 2069 [post_author] => 2 [post_date] => 2019-09-30 02:01:05 [post_date_gmt] => 2019-09-30 02:01:05 [post_content] =>

Welcome to This Week’s [in]Security. This week: Big changes coming in PCI updates to DSS, P2PE PA-DSS/SSF. First PCI SPoC solutions. New Control Gap service offerings. New Magecart tactics. Breaches: 400M medical records, DoorDash. Breach updates on Dunkin, CafePress. 69K Facebook apps suspended. NIST privacy and zero trust. GDPR and Blockchain. California's privacy law. Right to be forgotten. Forensic transparency. Cost of fraud. Malicious RDP. Blocking malicious attachments. Ransomware tools. Pen-testers redirected to FBI site. Vaccines. Quantum milestone. Trade tools. Youtube 2FA bypassed. Visualizing an APT. New widespread SIM card attack. Fighting deep-fakes. And more.

Now here's this week’s selection of news, opinions, and research. Quickly skim annotated links organized by topic: compliance and payment security, breaches, regulation, bugs, privacy, hacking/malware, other security & risk, and more. We hope you enjoy and find them useful.

PCI Compliance and Payments

News and announcements relating to Payment Security, Payments, PCI, and Card Brands.

Breaches / Leaks

Covering breaches, leaks, data exposures, and their fallout.

Privacy

Articles about privacy related news, risks, and trends.

Laws & Regulations / Standards

News about laws, regulations, and standards affecting security, privacy,  technology, and public interest.

Defense / Techniques / Solutions

Covering developments and opportunities that may help improve security.

Bugs / Design Flaws / Vulnerabilities / Research

Articles about newly discovered vulnerabilities and research.

Hacking / Malware / Cybercrime / Exploitation

News covering active trends and events.

Other Security / Risk

Articles covering other types of risks.

Off-Topic / Science & Tech / Lighter Side

A variety of scientific, technical, historical, and more light-hearted news.

_______________________________________________________________

Becoming PCI Compliant can be difficult, so why not let Control Gap guide you. We are the largest dedicated PCI compliance company in Canada. Contact us today and learn more about how we can help you: Get PCI Compliant. Stay PCI Compliant.

[post_title] => This Week’s [in]Security – Issue 130 [post_excerpt] => [post_status] => publish [comment_status] => open [ping_status] => open [post_password] => [post_name] => this-weeks-insecurity-issue-130 [to_ping] => [pinged] => https://controlgap.com/blog/control-gap-gets-cyber/ [post_modified] => 2019-09-30 02:01:07 [post_modified_gmt] => 2019-09-30 02:01:07 [post_content_filtered] => [post_parent] => 0 [guid] => http://controlgap.com/?p=2069 [menu_order] => 15 [post_type] => post [post_mime_type] => [comment_count] => 0 [filter] => raw ) [1] => WP_Post Object ( [ID] => 2068 [post_author] => 2 [post_date] => 2019-09-24 03:16:14 [post_date_gmt] => 2019-09-24 03:16:14 [post_content] =>

Welcome to This Week’s [in]Security. This week: Big updates from the PCI Community meeting including DSS 4.0, P2PE 3.0, and Software Security. Lots of breaches. 8 cities via Click2Gov, Magecart revival and hotel booking sites. Equador (yes the country). Facebook suspends thousands of apps. FBI National Security letters and back-doors. New Mitre CWE top 25. Faster Wi-fi. Elections. AI fighting card fraud. Microsoft breaks defender. More bad Android apps. Fitbit catches up murder. Sentencing and sanctions. Russian's read FBI encrypted comms. Gene manipulation gone wrong. Crown Sterling demo flops. The climate , carbon footprints, and nukes. And more.

Now here's this week’s selection of news, opinions, and research. Quickly skim annotated links organized by topic: compliance and payment security, breaches, regulation, bugs, privacy, hacking/malware, other security & risk, and more. We hope you enjoy and find them useful.

This week's photo was taken at the Vancouver PCI Community meeting (and no your browser hasn't stuck rendering). This highlights the risks of video games bleeding through into reality :). Okay we confess, it's just a nice sculpture.

PCI Compliance and Payments

News and announcements relating to Payment Security, Payments, PCI, and Card Brands.

Breaches / Leaks

Covering breaches, leaks, data exposures, and their fallout.

Privacy

Articles about privacy related news, risks, and trends.

Laws & Regulations / Standards

News about laws, regulations, and standards affecting security, privacy,  technology, and public interest.

Defense / Techniques / Solutions

Covering developments and opportunities that may help improve security.

Bugs / Design Flaws / Vulnerabilities / Research

Articles about newly discovered vulnerabilities and research.

Hacking / Malware / Cybercrime / Exploitation

News covering active trends and events.

Other Security / Risk

Articles covering other types of risks.

Off-Topic / Science & Tech / Lighter Side

A variety of scientific, technical, historical, and more light-hearted news.

_______________________________________________________________

Becoming PCI Compliant can be difficult, so why not let Control Gap guide you. We are the largest dedicated PCI compliance company in Canada. Contact us today and learn more about how we can help you: Get PCI Compliant. Stay PCI Compliant.

[post_title] => This Week’s [in]Security – Issue 129 [post_excerpt] => [post_status] => publish [comment_status] => open [ping_status] => open [post_password] => [post_name] => this-weeks-insecurity-issue-129 [to_ping] => [pinged] => https://scienmag.com/study-obesity-associated-with-abnormal-bowel-habits-not-diet/ [post_modified] => 2019-09-24 03:16:16 [post_modified_gmt] => 2019-09-24 03:16:16 [post_content_filtered] => [post_parent] => 0 [guid] => http://controlgap.com/?p=2068 [menu_order] => 17 [post_type] => post [post_mime_type] => [comment_count] => 0 [filter] => raw ) [2] => WP_Post Object ( [ID] => 2062 [post_author] => 2 [post_date] => 2019-09-16 11:58:20 [post_date_gmt] => 2019-09-16 11:58:20 [post_content] =>

Welcome to This Week’s [in]Security. This week: PCI SSF & SSLC Reporting Templates. PIN Technical (mandatory) FAQ update. Photographic memory breach. 200M+ in DealerLeads, Verizon, and Monster (jobs) breaches. Hospital pager PHI leak. Facebook and sex. Widening the encryption debate. Canada Cyber Safe? Copyright take-down backfires. Every state is investigating Google. Web scraping legality. Cyber skills gap. SD-WAN security. Encrypted DNS. Cyber insurance. Snake-oil indicators. BlueKeep is out there. Flashlight apps really? NetCat side channel attack. SIMjacker. Monetizing IoT attacks. RDP , passwords, and ransomware. Damaging the power grid. Spies. ATM EMV cash-out. Vanishing payroll. Interesting Crypto conference take-aways. Pentesting gone wrong. And more.

Now here's this week’s selection of news, opinions, and research. Quickly skim annotated links organized by topic: compliance and payment security, breaches, regulation, bugs, privacy, hacking/malware, other security & risk, and more. We hope you enjoy and find them useful.

PCI Compliance and Payments

News and announcements relating to Payment Security, Payments, PCI, and Card Brands.

Breaches / Leaks

Covering breaches, leaks, data exposures, and their fallout.

Privacy

Articles about privacy related news, risks, and trends.

Laws & Regulations / Standards

News about laws, regulations, and standards affecting security, privacy,  technology, and public interest.

Defense / Techniques / Solutions

Covering developments and opportunities that may help improve security.

Bugs / Design Flaws / Vulnerabilities / Research

Articles about newly discovered vulnerabilities and research.

Hacking / Malware / Cybercrime / Exploitation

News covering active trends and events.

Other Security / Risk

Articles covering other types of risks.

Off-Topic / Science & Tech / Lighter Side

A variety of scientific, technical, historical, and more light-hearted news.

_______________________________________________________________

Becoming PCI Compliant can be difficult, so why not let Control Gap guide you. We are the largest dedicated PCI compliance company in Canada. Contact us today and learn more about how we can help you: Get PCI Compliant. Stay PCI Compliant.

[post_title] => This Week’s [in]Security – Issue 128 [post_excerpt] => [post_status] => publish [comment_status] => open [ping_status] => open [post_password] => [post_name] => this-weeks-insecurity-issue-128 [to_ping] => [pinged] => https://scienmag.com/since-cooling-demand-is-primarily-driven-by-the-sun-could-it-also-be-powered-by-the-sun/ https://blog.trailofbits.com/2019/09/11/crypto-2019-takeaways/ [post_modified] => 2019-09-16 12:12:06 [post_modified_gmt] => 2019-09-16 12:12:06 [post_content_filtered] => [post_parent] => 0 [guid] => http://controlgap.com/?p=2062 [menu_order] => 18 [post_type] => post [post_mime_type] => [comment_count] => 0 [filter] => raw ) ) [post_count] => 3 [current_post] => -1 [in_the_loop] => [post] => WP_Post Object ( [ID] => 2069 [post_author] => 2 [post_date] => 2019-09-30 02:01:05 [post_date_gmt] => 2019-09-30 02:01:05 [post_content] =>

Welcome to This Week’s [in]Security. This week: Big changes coming in PCI updates to DSS, P2PE PA-DSS/SSF. First PCI SPoC solutions. New Control Gap service offerings. New Magecart tactics. Breaches: 400M medical records, DoorDash. Breach updates on Dunkin, CafePress. 69K Facebook apps suspended. NIST privacy and zero trust. GDPR and Blockchain. California's privacy law. Right to be forgotten. Forensic transparency. Cost of fraud. Malicious RDP. Blocking malicious attachments. Ransomware tools. Pen-testers redirected to FBI site. Vaccines. Quantum milestone. Trade tools. Youtube 2FA bypassed. Visualizing an APT. New widespread SIM card attack. Fighting deep-fakes. And more.

Now here's this week’s selection of news, opinions, and research. Quickly skim annotated links organized by topic: compliance and payment security, breaches, regulation, bugs, privacy, hacking/malware, other security & risk, and more. We hope you enjoy and find them useful.

PCI Compliance and Payments

News and announcements relating to Payment Security, Payments, PCI, and Card Brands.

Breaches / Leaks

Covering breaches, leaks, data exposures, and their fallout.

Privacy

Articles about privacy related news, risks, and trends.

Laws & Regulations / Standards

News about laws, regulations, and standards affecting security, privacy,  technology, and public interest.

Defense / Techniques / Solutions

Covering developments and opportunities that may help improve security.

Bugs / Design Flaws / Vulnerabilities / Research

Articles about newly discovered vulnerabilities and research.

Hacking / Malware / Cybercrime / Exploitation

News covering active trends and events.

Other Security / Risk

Articles covering other types of risks.

Off-Topic / Science & Tech / Lighter Side

A variety of scientific, technical, historical, and more light-hearted news.

_______________________________________________________________

Becoming PCI Compliant can be difficult, so why not let Control Gap guide you. We are the largest dedicated PCI compliance company in Canada. Contact us today and learn more about how we can help you: Get PCI Compliant. Stay PCI Compliant.

[post_title] => This Week’s [in]Security – Issue 130 [post_excerpt] => [post_status] => publish [comment_status] => open [ping_status] => open [post_password] => [post_name] => this-weeks-insecurity-issue-130 [to_ping] => [pinged] => https://controlgap.com/blog/control-gap-gets-cyber/ [post_modified] => 2019-09-30 02:01:07 [post_modified_gmt] => 2019-09-30 02:01:07 [post_content_filtered] => [post_parent] => 0 [guid] => http://controlgap.com/?p=2069 [menu_order] => 15 [post_type] => post [post_mime_type] => [comment_count] => 0 [filter] => raw ) [comment_count] => 0 [current_comment] => -1 [found_posts] => 133 [max_num_pages] => 45 [max_num_comment_pages] => 0 [is_single] => [is_preview] => [is_page] => [is_archive] => 1 [is_date] => [is_year] => [is_month] => [is_day] => [is_time] => [is_author] => [is_category] => 1 [is_tag] => [is_tax] => [is_search] => [is_feed] => [is_comment_feed] => [is_trackback] => [is_home] => [is_privacy_policy] => [is_404] => [is_embed] => [is_paged] => 1 [is_admin] => [is_attachment] => [is_singular] => [is_robots] => [is_posts_page] => [is_post_type_archive] => [query_vars_hash:WP_Query:private] => da119bfafb916fe9236564b322cfbcf1 [query_vars_changed:WP_Query:private] => 1 [thumbnails_cached] => [stopwords:WP_Query:private] => [compat_fields:WP_Query:private] => Array ( [0] => query_vars_hash [1] => query_vars_changed ) [compat_methods:WP_Query:private] => Array ( [0] => init_query_flags [1] => parse_tax_query ) )
WP_Query Object ( [query] => Array ( [post_type] => post [post_status] => publish [cat] => 216 [orderby] => date [order] => desc [posts_per_page] => 3 [paged] => 2 [ignore_sticky_posts] => 1 ) [query_vars] => Array ( [post_type] => post [post_status] => publish [cat] => 216 [orderby] => date [order] => DESC [posts_per_page] => 3 [paged] => 2 [ignore_sticky_posts] => 1 [error] => [m] => [p] => 0 [post_parent] => [subpost] => [subpost_id] => [attachment] => [attachment_id] => 0 [name] => [pagename] => [page_id] => 0 [second] => [minute] => [hour] => [day] => 0 [monthnum] => 0 [year] => 0 [w] => 0 [category_name] => weekly-insecurity [tag] => [tag_id] => [author] => [author_name] => [feed] => [tb] => [meta_key] => [meta_value] => [preview] => [s] => [sentence] => [title] => [fields] => [menu_order] => [embed] => [category__in] => Array ( ) [category__not_in] => Array ( ) [category__and] => Array ( ) [post__in] => Array ( ) [post__not_in] => Array ( ) [post_name__in] => Array ( ) [tag__in] => Array ( ) [tag__not_in] => Array ( ) [tag__and] => Array ( ) [tag_slug__in] => Array ( ) [tag_slug__and] => Array ( ) [post_parent__in] => Array ( ) [post_parent__not_in] => Array ( ) [author__in] => Array ( ) [author__not_in] => Array ( ) [update_post_term_cache] => 1 [suppress_filters] => [cache_results] => 1 [lazy_load_term_meta] => 1 [update_post_meta_cache] => 1 [nopaging] => [comments_per_page] => 50 [no_found_rows] => ) [tax_query] => WP_Tax_Query Object ( [queries] => Array ( [0] => Array ( [taxonomy] => category [terms] => Array ( [0] => 216 ) [field] => term_id [operator] => IN [include_children] => 1 ) ) [relation] => AND [table_aliases:protected] => Array ( [0] => wpcm_term_relationships ) [queried_terms] => Array ( [category] => Array ( [terms] => Array ( [0] => 216 ) [field] => term_id ) ) [primary_table] => wpcm_posts [primary_id_column] => ID ) [meta_query] => WP_Meta_Query Object ( [queries] => Array ( ) [relation] => [meta_table] => [meta_id_column] => [primary_table] => [primary_id_column] => [table_aliases:protected] => Array ( ) [clauses:protected] => Array ( ) [has_or_relation:protected] => ) [date_query] => [request] => SELECT SQL_CALC_FOUND_ROWS wpcm_posts.ID FROM wpcm_posts LEFT JOIN wpcm_term_relationships ON (wpcm_posts.ID = wpcm_term_relationships.object_id) WHERE 1=1 AND ( wpcm_term_relationships.term_taxonomy_id IN (216) ) AND wpcm_posts.post_type = 'post' AND ((wpcm_posts.post_status = 'publish')) GROUP BY wpcm_posts.ID ORDER BY wpcm_posts.menu_order, wpcm_posts.post_date DESC LIMIT 3, 3 [posts] => Array ( [0] => WP_Post Object ( [ID] => 2069 [post_author] => 2 [post_date] => 2019-09-30 02:01:05 [post_date_gmt] => 2019-09-30 02:01:05 [post_content] =>

Welcome to This Week’s [in]Security. This week: Big changes coming in PCI updates to DSS, P2PE PA-DSS/SSF. First PCI SPoC solutions. New Control Gap service offerings. New Magecart tactics. Breaches: 400M medical records, DoorDash. Breach updates on Dunkin, CafePress. 69K Facebook apps suspended. NIST privacy and zero trust. GDPR and Blockchain. California's privacy law. Right to be forgotten. Forensic transparency. Cost of fraud. Malicious RDP. Blocking malicious attachments. Ransomware tools. Pen-testers redirected to FBI site. Vaccines. Quantum milestone. Trade tools. Youtube 2FA bypassed. Visualizing an APT. New widespread SIM card attack. Fighting deep-fakes. And more.

Now here's this week’s selection of news, opinions, and research. Quickly skim annotated links organized by topic: compliance and payment security, breaches, regulation, bugs, privacy, hacking/malware, other security & risk, and more. We hope you enjoy and find them useful.

PCI Compliance and Payments

News and announcements relating to Payment Security, Payments, PCI, and Card Brands.

Breaches / Leaks

Covering breaches, leaks, data exposures, and their fallout.

Privacy

Articles about privacy related news, risks, and trends.

Laws & Regulations / Standards

News about laws, regulations, and standards affecting security, privacy,  technology, and public interest.

Defense / Techniques / Solutions

Covering developments and opportunities that may help improve security.

Bugs / Design Flaws / Vulnerabilities / Research

Articles about newly discovered vulnerabilities and research.

Hacking / Malware / Cybercrime / Exploitation

News covering active trends and events.

Other Security / Risk

Articles covering other types of risks.

Off-Topic / Science & Tech / Lighter Side

A variety of scientific, technical, historical, and more light-hearted news.

_______________________________________________________________

Becoming PCI Compliant can be difficult, so why not let Control Gap guide you. We are the largest dedicated PCI compliance company in Canada. Contact us today and learn more about how we can help you: Get PCI Compliant. Stay PCI Compliant.

[post_title] => This Week’s [in]Security – Issue 130 [post_excerpt] => [post_status] => publish [comment_status] => open [ping_status] => open [post_password] => [post_name] => this-weeks-insecurity-issue-130 [to_ping] => [pinged] => https://controlgap.com/blog/control-gap-gets-cyber/ [post_modified] => 2019-09-30 02:01:07 [post_modified_gmt] => 2019-09-30 02:01:07 [post_content_filtered] => [post_parent] => 0 [guid] => http://controlgap.com/?p=2069 [menu_order] => 15 [post_type] => post [post_mime_type] => [comment_count] => 0 [filter] => raw ) [1] => WP_Post Object ( [ID] => 2068 [post_author] => 2 [post_date] => 2019-09-24 03:16:14 [post_date_gmt] => 2019-09-24 03:16:14 [post_content] =>

Welcome to This Week’s [in]Security. This week: Big updates from the PCI Community meeting including DSS 4.0, P2PE 3.0, and Software Security. Lots of breaches. 8 cities via Click2Gov, Magecart revival and hotel booking sites. Equador (yes the country). Facebook suspends thousands of apps. FBI National Security letters and back-doors. New Mitre CWE top 25. Faster Wi-fi. Elections. AI fighting card fraud. Microsoft breaks defender. More bad Android apps. Fitbit catches up murder. Sentencing and sanctions. Russian's read FBI encrypted comms. Gene manipulation gone wrong. Crown Sterling demo flops. The climate , carbon footprints, and nukes. And more.

Now here's this week’s selection of news, opinions, and research. Quickly skim annotated links organized by topic: compliance and payment security, breaches, regulation, bugs, privacy, hacking/malware, other security & risk, and more. We hope you enjoy and find them useful.

This week's photo was taken at the Vancouver PCI Community meeting (and no your browser hasn't stuck rendering). This highlights the risks of video games bleeding through into reality :). Okay we confess, it's just a nice sculpture.

PCI Compliance and Payments

News and announcements relating to Payment Security, Payments, PCI, and Card Brands.

Breaches / Leaks

Covering breaches, leaks, data exposures, and their fallout.

Privacy

Articles about privacy related news, risks, and trends.

Laws & Regulations / Standards

News about laws, regulations, and standards affecting security, privacy,  technology, and public interest.

Defense / Techniques / Solutions

Covering developments and opportunities that may help improve security.

Bugs / Design Flaws / Vulnerabilities / Research

Articles about newly discovered vulnerabilities and research.

Hacking / Malware / Cybercrime / Exploitation

News covering active trends and events.

Other Security / Risk

Articles covering other types of risks.

Off-Topic / Science & Tech / Lighter Side

A variety of scientific, technical, historical, and more light-hearted news.

_______________________________________________________________

Becoming PCI Compliant can be difficult, so why not let Control Gap guide you. We are the largest dedicated PCI compliance company in Canada. Contact us today and learn more about how we can help you: Get PCI Compliant. Stay PCI Compliant.

[post_title] => This Week’s [in]Security – Issue 129 [post_excerpt] => [post_status] => publish [comment_status] => open [ping_status] => open [post_password] => [post_name] => this-weeks-insecurity-issue-129 [to_ping] => [pinged] => https://scienmag.com/study-obesity-associated-with-abnormal-bowel-habits-not-diet/ [post_modified] => 2019-09-24 03:16:16 [post_modified_gmt] => 2019-09-24 03:16:16 [post_content_filtered] => [post_parent] => 0 [guid] => http://controlgap.com/?p=2068 [menu_order] => 17 [post_type] => post [post_mime_type] => [comment_count] => 0 [filter] => raw ) [2] => WP_Post Object ( [ID] => 2062 [post_author] => 2 [post_date] => 2019-09-16 11:58:20 [post_date_gmt] => 2019-09-16 11:58:20 [post_content] =>

Welcome to This Week’s [in]Security. This week: PCI SSF & SSLC Reporting Templates. PIN Technical (mandatory) FAQ update. Photographic memory breach. 200M+ in DealerLeads, Verizon, and Monster (jobs) breaches. Hospital pager PHI leak. Facebook and sex. Widening the encryption debate. Canada Cyber Safe? Copyright take-down backfires. Every state is investigating Google. Web scraping legality. Cyber skills gap. SD-WAN security. Encrypted DNS. Cyber insurance. Snake-oil indicators. BlueKeep is out there. Flashlight apps really? NetCat side channel attack. SIMjacker. Monetizing IoT attacks. RDP , passwords, and ransomware. Damaging the power grid. Spies. ATM EMV cash-out. Vanishing payroll. Interesting Crypto conference take-aways. Pentesting gone wrong. And more.

Now here's this week’s selection of news, opinions, and research. Quickly skim annotated links organized by topic: compliance and payment security, breaches, regulation, bugs, privacy, hacking/malware, other security & risk, and more. We hope you enjoy and find them useful.

PCI Compliance and Payments

News and announcements relating to Payment Security, Payments, PCI, and Card Brands.

Breaches / Leaks

Covering breaches, leaks, data exposures, and their fallout.

Privacy

Articles about privacy related news, risks, and trends.

Laws & Regulations / Standards

News about laws, regulations, and standards affecting security, privacy,  technology, and public interest.

Defense / Techniques / Solutions

Covering developments and opportunities that may help improve security.

Bugs / Design Flaws / Vulnerabilities / Research

Articles about newly discovered vulnerabilities and research.

Hacking / Malware / Cybercrime / Exploitation

News covering active trends and events.

Other Security / Risk

Articles covering other types of risks.

Off-Topic / Science & Tech / Lighter Side

A variety of scientific, technical, historical, and more light-hearted news.

_______________________________________________________________

Becoming PCI Compliant can be difficult, so why not let Control Gap guide you. We are the largest dedicated PCI compliance company in Canada. Contact us today and learn more about how we can help you: Get PCI Compliant. Stay PCI Compliant.

[post_title] => This Week’s [in]Security – Issue 128 [post_excerpt] => [post_status] => publish [comment_status] => open [ping_status] => open [post_password] => [post_name] => this-weeks-insecurity-issue-128 [to_ping] => [pinged] => https://scienmag.com/since-cooling-demand-is-primarily-driven-by-the-sun-could-it-also-be-powered-by-the-sun/ https://blog.trailofbits.com/2019/09/11/crypto-2019-takeaways/ [post_modified] => 2019-09-16 12:12:06 [post_modified_gmt] => 2019-09-16 12:12:06 [post_content_filtered] => [post_parent] => 0 [guid] => http://controlgap.com/?p=2062 [menu_order] => 18 [post_type] => post [post_mime_type] => [comment_count] => 0 [filter] => raw ) ) [post_count] => 3 [current_post] => -1 [in_the_loop] => [post] => WP_Post Object ( [ID] => 2069 [post_author] => 2 [post_date] => 2019-09-30 02:01:05 [post_date_gmt] => 2019-09-30 02:01:05 [post_content] =>

Welcome to This Week’s [in]Security. This week: Big changes coming in PCI updates to DSS, P2PE PA-DSS/SSF. First PCI SPoC solutions. New Control Gap service offerings. New Magecart tactics. Breaches: 400M medical records, DoorDash. Breach updates on Dunkin, CafePress. 69K Facebook apps suspended. NIST privacy and zero trust. GDPR and Blockchain. California's privacy law. Right to be forgotten. Forensic transparency. Cost of fraud. Malicious RDP. Blocking malicious attachments. Ransomware tools. Pen-testers redirected to FBI site. Vaccines. Quantum milestone. Trade tools. Youtube 2FA bypassed. Visualizing an APT. New widespread SIM card attack. Fighting deep-fakes. And more.

Now here's this week’s selection of news, opinions, and research. Quickly skim annotated links organized by topic: compliance and payment security, breaches, regulation, bugs, privacy, hacking/malware, other security & risk, and more. We hope you enjoy and find them useful.

PCI Compliance and Payments

News and announcements relating to Payment Security, Payments, PCI, and Card Brands.

Breaches / Leaks

Covering breaches, leaks, data exposures, and their fallout.

Privacy

Articles about privacy related news, risks, and trends.

Laws & Regulations / Standards

News about laws, regulations, and standards affecting security, privacy,  technology, and public interest.

Defense / Techniques / Solutions

Covering developments and opportunities that may help improve security.

Bugs / Design Flaws / Vulnerabilities / Research

Articles about newly discovered vulnerabilities and research.

Hacking / Malware / Cybercrime / Exploitation

News covering active trends and events.

Other Security / Risk

Articles covering other types of risks.

Off-Topic / Science & Tech / Lighter Side

A variety of scientific, technical, historical, and more light-hearted news.

_______________________________________________________________

Becoming PCI Compliant can be difficult, so why not let Control Gap guide you. We are the largest dedicated PCI compliance company in Canada. Contact us today and learn more about how we can help you: Get PCI Compliant. Stay PCI Compliant.

[post_title] => This Week’s [in]Security – Issue 130 [post_excerpt] => [post_status] => publish [comment_status] => open [ping_status] => open [post_password] => [post_name] => this-weeks-insecurity-issue-130 [to_ping] => [pinged] => https://controlgap.com/blog/control-gap-gets-cyber/ [post_modified] => 2019-09-30 02:01:07 [post_modified_gmt] => 2019-09-30 02:01:07 [post_content_filtered] => [post_parent] => 0 [guid] => http://controlgap.com/?p=2069 [menu_order] => 15 [post_type] => post [post_mime_type] => [comment_count] => 0 [filter] => raw ) [comment_count] => 0 [current_comment] => -1 [found_posts] => 133 [max_num_pages] => 45 [max_num_comment_pages] => 0 [is_single] => [is_preview] => [is_page] => [is_archive] => 1 [is_date] => [is_year] => [is_month] => [is_day] => [is_time] => [is_author] => [is_category] => 1 [is_tag] => [is_tax] => [is_search] => [is_feed] => [is_comment_feed] => [is_trackback] => [is_home] => [is_privacy_policy] => [is_404] => [is_embed] => [is_paged] => 1 [is_admin] => [is_attachment] => [is_singular] => [is_robots] => [is_posts_page] => [is_post_type_archive] => [query_vars_hash:WP_Query:private] => da119bfafb916fe9236564b322cfbcf1 [query_vars_changed:WP_Query:private] => 1 [thumbnails_cached] => [stopwords:WP_Query:private] => [compat_fields:WP_Query:private] => Array ( [0] => query_vars_hash [1] => query_vars_changed ) [compat_methods:WP_Query:private] => Array ( [0] => init_query_flags [1] => parse_tax_query ) )
This Week’s [in]Security – Issue 130
September 30 2019

Welcome to This Week’s [in]Security. This week: Big changes coming in PCI updates to DSS, P2PE PA-DSS/SSF. First PCI SPoC solutions. New Control Gap service offerings. New Magecart tactics. Breaches: 400M medical records, DoorDash. Breach updates on Dunkin, CafePress. 69K Facebook apps suspended. NIST privacy and zero trust. GDPR and Blockchain. California’s privacy law. Right

Read More
This Week’s [in]Security – Issue 129
September 24 2019

Welcome to This Week’s [in]Security. This week: Big updates from the PCI Community meeting including DSS 4.0, P2PE 3.0, and Software Security. Lots of breaches. 8 cities via Click2Gov, Magecart revival and hotel booking sites. Equador (yes the country). Facebook suspends thousands of apps. FBI National Security letters and back-doors. New Mitre CWE top 25.

Read More
This Week’s [in]Security – Issue 128
September 16 2019

Welcome to This Week’s [in]Security. This week: PCI SSF & SSLC Reporting Templates. PIN Technical (mandatory) FAQ update. Photographic memory breach. 200M+ in DealerLeads, Verizon, and Monster (jobs) breaches. Hospital pager PHI leak. Facebook and sex. Widening the encryption debate. Canada Cyber Safe? Copyright take-down backfires. Every state is investigating Google. Web scraping legality. Cyber

Read More

e-newsletter

Want important PCI information delivered to you? Sign-up to our e-newsletter and be the first one to know about industry news and trend, offers and promotions.

×

Contact

×

PCI Pilot™ is coming soon!

Our highly-anticipated online tool will be launching very soon to make your PCI SAQ process quick and seamless.

Sign-up today and be among the first to know when PCI Pilot™ is live!