Skip to the main content.
Contact
Contact

CG Blogger

CG Blogger

16 min read

This Week's [in]Security - Issue 286

Welcome to This Week’s [in]Security. Credit Card skimming & fraud surge: Magento, Linkedin Smartlinks, Google Tags, smartphone 2fa bypass, fake subscriptions, triangulation. MFA fatigue! Hurricane Fiona. New breaches: American Airlines, PHI exposed via...

Read More >

15 min read

This Week's [in]Security - Issue 285

Welcome to This Week’s [in]Security. The PCI Community meeting, mobile app, training, collaboration, and updates. Uber breached again and this time its huge. FishPig/WordPress backdoor magecart skimmer. Significant vulnerabilities: Spell-Jacking, Tesla...

Read More >

13 min read

This Week's [in]Security - Issue 284

Welcome to This Week’s [in]Security. PCI updates. New breaches: TikTok, Holiday Inn, NATO. New Ransomware, Outages, Follow-ups: HIBP. Privacy: Advertisers and searches, Where's Facebooks data? Laws & Regs - Canada: Cellular emergencies. US:...

Read More >

15 min read

This Week's [in]Security - Issue 283

Welcome to This Week’s [in]Security. PCI updates: Customized Approach, PCI & IoT, PTS RFC, FAQs. Privacy: Fog Data Science location broker, drones. New breaches: Samsung, Chinese facial & license db, IRS, Vodafone, KeyBank. New Ransomware: Vmware,...

Read More >

12 min read

This Week's [in]Security - Issue 282

Welcome to This Week’s [in]Security. PCI updates: Prioritized Approach. Twitter vs Mudge a whistleblower with cred. Cheap Complexity. New breaches: LastPass's codebase, Novant - Facebook trackers & PHI, Plex, Twilio fallout. New Ransomware. Follow-ups:...

Read More >

18 min read

This Week's [in]Security - Issue 281

Welcome to This Week’s [in]Security. Updated FAQs for v4, In-app browsers, improved Rubber Duck USB attack tool! New breaches: response backfires, healthcare, Microsoft. New Ransomware: preparedness, wrong victim, dog-pile. Outages. Follow-ups. Privacy:...

Read More >

15 min read

This Week's [in]Security - Issue 280

Welcome to This Week’s [in]Security. PCI FAQs. Crypto-research: the PQC demo derby, more SIDH attacks. New breaches: Twillo, Cisco, Shanghai, ipay88, not AT&T(?), VNC, Zimbra, party poopers. New Ransomware: Finland, Bombardier. Outages: Google, MS365....

Read More >

13 min read

This Week's [in]Security - Issue 279

Welcome to This Week’s [in]Security. NIST 4th round PQC candidate broken! GPU array achieves quantum supremacy!? PCI updates, Payment terminal portal breach, and Chargebacks. New breaches: Twitter PII & API keys, Cellebrite, Slack, QuestionPro. New...

Read More >

15 min read

This Week's [in]Security - Issue 278

Welcome to This Week’s [in]Security. PCI PIN FAQ update, skimmers, payments. New breaches: Entrust, Residential Proxy Service. New Ransomware, Major outages, Follow-ups & Fall-out: China, US Fed, Uber, Timmies, Wawa. Privacy: Ring Cameras. Laws & Regs -...

Read More >