17 min read

This Week's [in]Security - Issue 173

Featured Image

Welcome to This Week’s [in]Security. Twitter Hack Week 2. Fallout from US Unrest. Covid-19: Spread, Curves, Spikes & Waves. Lockdown, Reopening, & The New Normal. Vaccine Progress. More of the Good, Bad, and Ugly. Inside a Carding Forum. New ATM Jackpotting Attack. New breaches: CouchSurfing 17M. 14M, 3M, Universities/Blackbaud, Instacart. Family Tree Maker. GEDmatch DNA. 407 ETR. Ransomware: Garamin. Contact tracing app problems. Plaid Class Action. PACT At. Post-quantum Crypto Update. ML & the CFAA. MS TLS sunset. Ontario. Code Freezer. Quantum Internet. Cyber-skills. Anti-Facial Recognition. BadPower attack. PDF Shadow Attack. Alexa Naughtiness. Adobe patches. Inecure apps. Botnet Vigilante. Twilio and DeepSource Code Compromised. Meow DB Attack. Unexpected Packages. FBI and NSA warnings. Biases & Risk. Supply Chain Risk. AI Parody. And more.

Trending news and COVID-19 updates.

The COVID related articles here fit together. Other COVID articles will appear under our normal section headings like regulations, privacy, breaches, and other risks. We have been following coronavirus risks since

PCI Compliance and Payments

News and announcements relating to Payment Security, PCI, Card Brands, Payments, Payment Malware and Fraud.

Breaches / Ransomware / Leaks

Covering breaches, leaks, data exposures, ransomware (as potential breach), and their fallout.


Articles about privacy related news, risks, and trends.

Laws & Regulations / Standards

News about laws, regulations, and standards affecting security, privacy,  technology, and public interest.

Defense / Techniques / Solutions

Covering developments and opportunities that may help improve security.

Bugs / Design Flaws / Vulnerabilities / Research

Articles about newly discovered vulnerabilities and research.

Hacking / Malware / Cybercrime / Exploitation

News covering active trends and events.

Other Security / Risk

Articles covering other types of risks.

Off-Topic / Science & Tech / Lighter Side

A variety of scientific, technical, historical, and more light-hearted news.

This Week's [in]Security - Issue 271

Welcome to This Week’s [in]Security. Non-Compliance Lesson, DSSv4 related, Skimmers, Other Payments. New breaches: 7 breachers per capita, Shields &...

Read More

Non-Compliance Lesson No. 4: Keep your head in the cloud when adopting new technologies

PCI DSS can be hard and not preparing for it just makes things harder. Following this advice is guaranteed to make it both more exciting and painful.

Read More

“Follina” – Critical Zero-Day Exploit for Microsoft Products


Over the past holiday weekend, a tweet from Tokyo-based security researcher “nao_sec” first identified an interesting upload to antivirus...

Read More