Skip to the main content.
Contact
Contact

15 min read

This Week's [in]Security - Issue 275

Welcome to This Week’s [in]Security. PCI and payments: Payments: Liability shift. New in breaches: China 1B PII, Airports, Marriott, 2022 so far. New in Ransomware: AstraLocker, Hive, Hospitals, Major outages: Canada Rogers Internet & phones. Follow-ups & Fall-out. Privacy: Police spyware & surveillance, ICE. Laws & Regs - Canada: ArriveCan, CBSA, employee misconduct. US: TikTok, Facebook, archive.org. World: abuse images, data transfers, cyber-insurance. Standards: Post-quantum cryptography (PQC), PSD3 APIs. Defense - Training & events: Linkedin. Tools & Techniques, Securing Usernames, Apple Lockdown mode, Vulnerabilities - Advisories: IP Theft, Zerodays, Fixes and ZD, Chrome. Patching: OpenSSL, Cisco & Fortinet, NTLM Relay. Other: Warshipping, IDEs, macro non-blocking, Routers, Drones. Crypto-research. Cybercrime - Trends: NPM libraries, Follina. Web3, Twitter spam. Crime & Enforcement: WireCard, $620M crypto heist. Nation States and mercenaries. Other Risks - General: 5g, EVs, COBOL, Acronyms, AI Bias, Disinformation, Health, Safety, Environment, Economy. Russia v. Ukraine. Innovation and more.

PCI Compliance and Payments

News and announcements relating to Payment Security, PCI, Card Brands, Payments, Payment Malware and Fraud, and Payment Related Compliance.

Breaches / Ransomware / Leaks

Covering breaches, leaks, data exposures, ransomware (as potential breach), and their fallout.

Privacy

Articles about privacy related news, risks, and trends.

Laws, Regulations, Platforms, Standards, and Public Policy

News about laws, regulations, platform rules, and standards affecting security, privacy, technology, and public interest.

Defense / Techniques / Solutions

Covering developments and opportunities that may help improve security.

Bugs / Design Flaws / Vulnerabilities / Research

Articles about newly discovered vulnerabilities and research.

Hacking / Malware / Cybercrime / Exploitation

News covering active trends, alerts, events.

Other Security / Risk

Articles covering other types of risks.

Russia v. Ukraine

News and announcements relating to Russia's invasion of Ukraine.

Off-Topic / Science & Tech / Lighter Side

A variety of scientific, technical, historical, and more light-hearted news.

Control Gap Vulnerability Roundup: August 6th to August 12th

This week saw the publication of 576 new CVE IDs. Of those, 80 have not yet been assigned official CVSS scores, however, of the ones that were,...

Read More

This Week's [in]Security - Issue 280

Welcome to This Week’s [in]Security. PCI FAQs. Crypto-research: the PQC demo derby, more SIDH attacks. New breaches: Twillo, Cisco, Shanghai, ipay88,...

Read More

Control Gap Vulnerability Roundup: July 30th to August 5th

This week saw the publication of 449 new CVE IDs. Of those, 315 have not yet been assigned official CVSS scores, however, of the ones that were,...

Read More