The Art of Reading a PCI Attestation of Compliance (AoC)
PCI Attestations of Compliance (AoCs) provide organizations with a tool that helps with the all-important aspects of third-party due diligence. Yet...
Welcome to This Week’s [in]Security. PCI FAQs. Crypto-research: the PQC demo derby, more SIDH attacks. New breaches: Twillo, Cisco, Shanghai, ipay88, not AT&T(?), VNC, Zimbra, party poopers. New Ransomware: Finland, Bombardier. Outages: Google, MS365. Follow-ups: Twitter. Privacy: Facebook, GitHub, RCMP. Laws & Regs - Canada: Internet, ArriveCAN. US: Cyberattack reporting, AI patents. World: Big tech. NIST standards. Defense - Training & events: PQC Migration workshop, DEFCON & Blackhat. Tools & Techniques, better incident investigation, defending supply chains, Kali. Vulnerabilities - Advisories: UNRAR, broken advisories. Patching: errors, Windows data corruption, UEFI bypass. Significant: Round-up, dev pipelines. NPM and PyPl. Research: SQUIP, SGX, Starlink. Cybercrime - Trends: deepfakes, Scam-as-a-Service. Crime & Enforcement. Nation States and mercenaries. Other Risks - Cyber-insurance, critical-infrastructure, stolen algorithms. AI, Disinformation, Health, Safety, Environment, Economy. Russia v. Ukraine. Innovation and more.
News and announcements relating to Payment Security, PCI, Card Brands, Payments, Payment Malware and Fraud, and Payment Related Compliance.
Covering breaches, leaks, data exposures, ransomware (as potential breach), and their fallout.
Articles about privacy related news, risks, and trends.
News about laws, regulations, platform rules, and standards affecting security, privacy, technology, and public interest.
Covering developments and opportunities that may help improve security.
Articles about newly discovered vulnerabilities and research.
News covering active trends, alerts, events.
Articles covering other types of risks.
News and announcements relating to Russia's invasion of Ukraine.
A variety of scientific, technical, historical, and more light-hearted news.
PCI Attestations of Compliance (AoCs) provide organizations with a tool that helps with the all-important aspects of third-party due diligence. Yet...
This week saw the publication of 493 new CVE IDs. Of those, 58 have not yet been assigned official CVSS scores, however, of the ones that were,...
This week saw the publication of 442 new CVE IDs. Of those, 258 have not yet been assigned official CVSS scores, however, of the ones that were,...