11 min read

This Week’s [in]Security – Issue 123

Featured Image

Welcome to This Week’s [in]Security. This week: PCI - the first listed SPoC solution, DSS v4 development. PCI, Visa, and Retail & Hospitality ISAC coordinate Magecart security alerts. Bypassing Visa contact-less limits. Capital One - 106M record cloud breach, arrest, analysis, investigations, and lawsuits. Breaches - CafePress, Mexican bookstore, POS supply chain, Amazon cloud backups, Honda, FormGet, ambulance and police services. Equifax short cash for payouts. GDPR used to breach GDPR. GDPR revenue impact. PSD2 and e-commerce. EU companies on hook for FB likes. The "going Dark" debate rages. Encryption in space is hard. Abusing the Blockchain. Vulnerabilities - small planes, DSLRs, more Spectre, SCADA, WPA3, Qualcomm-Android, 40+ Windows drivers, 200M IoT devices. No open instant message malware. Mobile carrier insecurity. Selling and buying insecure kit. War-Shipping. Pseudoscience social media risks. The TSA finds a missile launcher in checked luggage. And more.

Now here's this week’s selection of news, opinions, and research. Quickly skim annotated links organized by topic: compliance and payment security, breaches, regulation, bugs, privacy, hacking/malware, other security & risk, and more. We hope you enjoy and find them useful.

PCI Compliance and Payments

News and announcements relating to Payment Security, Payments, PCI, and Card Brands.

Breaches / Leaks

Covering breaches, leaks, data exposures, and their fallout.


Articles about privacy related news, risks, and trends.

Laws & Regulations / Standards

News about laws, regulations, and standards affecting security, privacy,  technology, and public interest.

Defense / Techniques / Solutions

Covering developments and opportunities that may help improve security.

Bugs / Design Flaws / Vulnerabilities / Research

Articles about newly discovered vulnerabilities and research.

Hacking / Malware / Cybercrime / Exploitation

News covering active trends and events.

Other Security / Risk

Articles covering other types of risks.

Off-Topic / Science & Tech / Lighter Side

A variety of scientific, technical, historical, and more light-hearted news.

PCI Compliance & Why You Need to be Compliant

Getting paid is just as important as PCI compliance. Businesses of all sizes rely on cash flow to effectively manage business operations. To ensure...

Read More

1 min read

Why POI Tamper Inspections are so Important

It is amazing to see how many organizations take things for granted in their environment. In the video below, you can see a skimmer device installed...

Read More

This Week's [in]Security - Issue 266

Welcome to This Week’s [in]Security. PCI and payments: Skimmers. Payments: New breaches: Anonymous, DeFi, Ikea. New Ransomware, Major outages,...

Read More