controlgap.com

Welcome to This Week’s [in]Security. Twitter Hack Week 2. Fallout from US Unrest. Covid-19: Spread, Curves, Spikes & Waves. Lockdown, Reopening, & The New Normal. Vaccine Progress. More of the Good, Bad, and Ugly. Inside a Carding Forum. New ATM Jackpotting Attack. New breaches: CouchSurfing 17M. Promo.com 14M, Dave.com 3M, Universities/Blackbaud, Instacart. Family Tree Maker. GEDmatch DNA. 407 ETR. Ransomware: Garamin. Contact tracing app problems. Plaid Class Action. PACT At. Post-quantum Crypto Update. ML & the CFAA. MS TLS sunset. Ontario. Code Freezer. Quantum Internet. Cyber-skills. Anti-Facial Recognition. BadPower attack. PDF Shadow Attack. Alexa Naughtiness. Adobe patches. Inecure apps. Botnet Vigilante. Twilio and DeepSource Code Compromised. Meow DB Attack. Unexpected Packages. FBI and NSA warnings. Biases & Risk. Supply Chain Risk. AI Parody. And more.

Welcome to This Week’s [in]Security. Twitter Hack/Breach. Facebook Ad boycott. Covid-19: Spread, Curves, Spikes & Waves. Lockdown, Reopening, & The New Normal. More of the Good, Bad, and Ugly. Key Block Implementation Delay. Those lying No-logging VPN services. CCPA lawsuit. Data Exfiltration vs. Data at Rest Controls? Confidential Computing. Mozilla VPN. Anti-voice-assistant snooping tech. Free anti-ransomware tool. Stopping web-trackers. DNS. SAP Recon. Smartphone Knock Codes (Patterns) CIA hackers. Mandated malware? Iran oops. Counterfeit Network Gear. Enigma. Step inside someone else's YouTube bubble if you dare. And more.

Welcome to This Week’s [in]Security. Fallout from US Unrest. Facebook Ad boycott. Covid-19: Spread & Curve. Lockdown, Reopening, & The New Normal. Herd Immunity? Airborne? More of the Good, Bad, and Ugly. CPoC Listing. Even more Magecart. Card Testing. Not an EMV Clone. BlueLeaks Updates. Billions of passwords. Contact tracing app problems. Facial Recognition. TikTok privacy. Anti-Tracking. Body Cam Blues. Tech, China, and Hong Kong. Right to repair. CFAA. Stalkerware. Secure Outsourcing paper. Accelerating vulnerabilities? Citrix. F5 Backdoor implants. IoT Backdoors. Security Cameras. eHealth. 100K WordPress sites. Zoom Zero-Day. Self-inflicted Crypto Injuries. OAuth attacks. Security Awareness ROI. Sharks. And more.

Welcome to This Week’s [in]Security. Fallout from US Unrest. Facebook Ad boycott. Covid-19: Spread & Curve. Lockdown, Reopening, & The New Normal. More of the Good, Bad, and Ugly. Mostly Magento. COVID Breach Bubble. Darkweb trove on 14M exposed. 132M records from 14 sites. More Blueleaks? Evolution of ransomware. Mac ransomware. A privacy friendly search? SSN lock fail. Naughty FB apps. Crypto-wars. Geofencing Warrants. SIM swap lawsuit. Ad blocker benefits. HTTP/3. Securing IoT. Palo Alto severity 10 bug. F5 Compromise. Massive password study. Kill 2G. Netgear routers. Too many tools. EncroChat. Nortel hack? Bossware. Unemployment. Security through inefficiency! Facial False Positives. AI bias. Fake Social Media Accounts. H1N1 (G4). Wiki-washing. And more.

Welcome to This Week’s [in]Security. Fallout from US Unrest. Covid-19: Spread & Curve. Lockdown, Reopening, & The New Normal. More of the Good, Bad, and Ugly. Huge breach of dating apps. Web tracking breach. Contact tracing app problems. Implementing Privacy. Zoom blinks. NIST. DDoS. Expiring root Certificates followup. Anti-malware CPUs. Adobe, Windows 10 2004 bugs. Harvesting zero-days. Fake hacks. Crims using CAPTCHA. Vault 7 tools poorly secured. And more.

Welcome to This Week’s [in]Security. Fallout from US Unrest. Covid-19: Spread & Curve. Lockdown, Reopening, & The New Normal. More of the Good, Bad, and Ugly. Magecart. Payment fraud and reserves. Key mismanagement. COVID related breaches. Contact tracing app problems. Facial recognition. Blaming users. Forensics survey. Fighting deepfakes. Lamphone eavesdropping attack. Lifespan of a Vulnerability. Bad GnuTLS bug. Intel side-channels. Magneto. IoT. Facebook Tails Exploit. Massive hacker for hire operation. Ransomware's hidden costs. Ransomware is fast. Root Certificate expiry will brick smart appliances. Zoom censorship. AI arms race simulations. And more.

Welcome to This Week’s [in]Security. Fallout from US Unrest. Covid-19: Spread & Curve. Lockdown, Reopening, & The New Normal. Predicting outbreaks with social media. More of the Good, Bad, and Ugly. Medical research scandal. PCI SSF for Terminal Software. New FAQ. COVID related breaches. Another 100M breached credentials surface. Approximately 10M new. Contact tracing app problems. Google Incognito Lawsuit. Twitter War NIST key generation and IoT updates. Defending against future pandemics. e tu Password. Cybercrime prevention Homomorphic encryption tools. Shades of 'The Italian Job'. Air-gapped malware. e-Voting. Huawei 5G and the 5 Eyes. Zoom Encryption Controversy. And more.

Welcome to This Week’s [in]Security. Covid-19: Spread & Curve Toronto COVID map & stats. Lockdown, Reopening, & The New Normal. More Good, Bad, and Ugly. Update on PCI DSS v4. COVID related breaches. A whopping 8B record giga-breach. 100M+ in smaller ones. Breach reports down? 5.5M older breaches added to HIBP. Ransomware's growth. Forensics report not 'protected' in lawsuit. Contact tracing app problems. Location tracking lawsuit. Twitter War. NIST monitoring, microservices, and crypto-agility. Doomsday Planning. Identifying fake photos. EXIM mail actively being exploited. Password reuse, SHA-1 login deprecated, 26 USB vulnerabilities. Bulletproof TLS #65. Random number security. Free ACM Digital Library Access. COVID Crimes. Scam anti-5G tech. Port-scanning customers without consent! UK 5G re-think. Rhyming AIs. We have liftoff. And more.

Welcome to This Week’s [in]Security. Covid19 passes 5M infected and nearly 100K US dead. Brazil, Russia. Leaked data on China's infections. Failed herd immunity. Misinformation. Distancing gimmicks. Isolation fatigue. New and updated PCI FAQs. PCI GEAR. Magecart evading scans. Verizon's annual breach report (DBIR). Breach notice speak. 116M+ breached records. COVID related breaches. Contact tracing APIs and apps. Deleting yourself from the Internet. Apple v FBI again. Security and memory safety. Dark Web checkup. Quantum computing update. COVID related fraud. Not invented here risk. Negative interest rates. Disturbing AI. Incels. Dust bowl 2.0. Hurricanes. The South Atlantic Anomaly. Recycling munitions. And more.

Now here's this week’s selection of news, opinions, and research. Quickly skim annotated links organized by topic: compliance and payment security, breaches, regulation, bugs, privacy, hacking/malware, other security & risk, and more. We hope you enjoy and find them useful.