The New Google .zip TLD: Examining Potential Cybersecurity Risks
On May 3rd Google introduced several new top-level domains (TLDs), including the .zip TLD which has generated warnings from the cybersecurity...
Welcome to This Week’s [in]Security. This week: PCI more on Key Blocks and some case studies. Breeches: Hy-Vee, Choice Hotels, State Farm, dating apps. Followups on Capital One, Equifax, AMCA, and First America. What may be the first mega breach of biometric data. Privacy commissioner on what to do if breached. Regaining trust. Facebook had people listening in on messenger calls too. NIST and cyberbudgets for small companies. Facebook biometric lawsuit. DEFCON is done and there are lots of new vulnerabilities and defensive techniques. Cybersecurity as practiced by experts and regular people. Google phasing out android passwords. Protecting 100M Lines of code. Escape room recruiting. Instagram 'fake' buttons. A skimmer detector. Ancient and horrible Windows CTF vulnerability. Browsers dropping XSS protections. EV certs. No honor among thieves. Sonic-Attack. Vanity plate risks. Brexit shortages. Stopping mass shooters and more.
Now here's this week’s selection of news, opinions, and research. Quickly skim annotated links organized by topic: compliance and payment security, breaches, regulation, bugs, privacy, hacking/malware, other security & risk, and more. We hope you enjoy and find them useful.
News and announcements relating to Payment Security, Payments, PCI, and Card Brands.
New PCI DSS and ISA Case Studies Available:
Covering breaches, leaks, data exposures, and their fallout.
Articles about privacy related news, risks, and trends.
News about laws, regulations, and standards affecting security, privacy, technology, and public interest.
Covering developments and opportunities that may help improve security.
Articles about newly discovered vulnerabilities and research.
News covering active trends and events.
Articles covering other types of risks.
A variety of scientific, technical, historical, and more light-hearted news.
On May 3rd Google introduced several new top-level domains (TLDs), including the .zip TLD which has generated warnings from the cybersecurity...
This week saw the publication of 294 new CVE IDs. Of those, 99 have not yet been assigned official CVSS scores, however, of the ones that were,...
This week saw the publication of 501 new CVE IDs. Of those, 430 have not yet been assigned official CVSS scores, however, of the ones that were,...