10 min read

This Week’s [in]Security – Issue 152

Featured Image

Welcome to This Week’s [in]Security. Trending: Coronavirus impact update: spread, defense, and impact. More crypto-wars fallout: Crypto AG criminal investigation. Throwing out Huawei and ZTE. Deepfakes and Payment Fraud. Samsung, Straffic 48M records, Hong Kong and Rotherwood Healthcare breaches. Clearview and DISA breach followups. Ransomware frees accused. Lifelabs blocking regulator. Desjardins' $108M breach cost. Shunning breached companies. SimpleTax buyer renegs on privacy. Alexa's listening. Sidewalk Labs privacy. Formalizing right to be forgotten. $200M FTC fine over cellphone location data.FB vs analytics firm. NY cybersecurity enforcement. NSA metadata collection. NIST Cyber security roadmap. Encrypted DNS update. Cloud risk mitigation. Preventing leaks. IOT class actions. TLS cert and signature changes. Memory encryption. Cybersecurity Humble Bundle . Ransomware gets to the backups. Zyxel zero-day hits more products. AWS firewall bypass. Ancient Tomcat bug found. IoT vacuum sucks camera data too. 2FA and unpatched phones. 2FA malware. Attacking healthcare for profit. PayPal abuse. RSA conference. DDoS as a smokescreen. Russian provocations. And more.

Now here's this week’s selection of news, opinions, and research. Quickly skim annotated links organized by topic: compliance and payment security, breaches, regulation, bugs, privacy, hacking/malware, other security & risk, and more. We hope you enjoy and find them useful.

New - Emerging Issues and Trending Stories

This special section is dedicated to emerging issues and trending stories that cross multiple of our regular news categories.

PCI Compliance and Payments

News and announcements relating to Payment Security, PCI, Card Brands, Payments, Payment Malware and Fraud.

Breaches / Ransomware / Leaks

Covering breaches, leaks, data exposures, ransomware (as potential breach), and their fallout.


Articles about privacy related news, risks, and trends.

Laws & Regulations / Standards

News about laws, regulations, and standards affecting security, privacy,  technology, and public interest.

Defense / Techniques / Solutions

Covering developments and opportunities that may help improve security.

Bugs / Design Flaws / Vulnerabilities / Research

Articles about newly discovered vulnerabilities and research.

Hacking / Malware / Cybercrime / Exploitation

News covering active trends and events.

Other Security / Risk

Articles covering other types of risks.

Off-Topic / Science & Tech / Lighter Side

A variety of scientific, technical, historical, and more light-hearted news.

PCI Compliance & Why You Need to be Compliant

Getting paid is just as important as PCI compliance. Businesses of all sizes rely on cash flow to effectively manage business operations. To ensure...

Read More

1 min read

Why POI Tamper Inspections are so Important

It is amazing to see how many organizations take things for granted in their environment. In the video below, you can see a skimmer device installed...

Read More

This Week's [in]Security - Issue 266

Welcome to This Week’s [in]Security. PCI and payments: Skimmers. Payments: New breaches: Anonymous, DeFi, Ikea. New Ransomware, Major outages,...

Read More