controlgap.com

Welcome to This Week’s [in]Security. Union Pay and PCI, New FAQ, Magecart. UI Rant. New breaches, New Ransomware: Ports. Blood Services, gangs. Follow-ups & Fall-out....

Welcome to This Week’s [in]Security. PCI: SLC v1.1, Sunsetting P2PE v2 and PA-DSS. MasterCard resources. Control Gap SSA & SSLC. Magecart mobile, Carders. New breaches: Japanese Dating & government, Canada Post, Nukes, Dominos India, Hospitals, Compound redaction leak, New Ransomware: RCMP, Defensive shutdown. Privacy: Facial Recognition, Hiding controls. Laws & Regs - Canada: C-10 impact. US: Breach law. The world: Mass Surveillance, Data residency. Standards: NIST: Cloud, IoT/MuD. USB-C upgrade. Defense: Webinars, Webinars. Pipeline response, Cyber budgets, Unknown-unknowns, FBI supporting HIBP.

Welcome to This Week’s [in]Security. Magecart exfiltration. More FPE Weakness. Big-Hacks: Exchange Hack. F5 Attacks. SolarWinds. New breaches: WeLeakInfo. New Ransomware. Acer. Ransomware cost. Big Brother UK. Find My Device. Privacy Theatre. Background Checking Your Date. Internet Blocking. Apple & Russia. Interrupts. Ransomware protection. DevSECops. SMS Hijacking. Power Grid. Pickle Files. File Nesting. Spectre POC. Fiserv. ZeroDays. Trends. Worms. Nation States. Hacking Spree. Telcos. Crime. FBI Crime Report. Camera Arrest. DarkWeb. Smart Doorbell Risk. H2O. Voting Machines. Insider Risk. Infrastructure and Platform Risk. Illegal Blockchain. Big Microsoft Outage. Health, Safety & Environment. Covid-19: Spread, Curves, Spikes, Waves, & reinfections. Impact. Immunity, Vaccines, and Vaccination. And more.

Welcome to This Week’s [in]Security. Magecart. New breaches: New Ransomware. Spotify. NIST. Attack the AI. Lego? Free book. Patching! Open Source. Easy Hacking. A year of zero-days. IoT. Libgcrypt. Chrome and Google's bad week. SolarWinds. Quantum. Wi-Fi. Trends. VMware. Supercomputers. Chrome. Perl. SonicWall. Infinite Coffee. Nation States. Arrests, etc. AI Job Screeners. Moderating Speech. US vs Hackers. Peloton. Capitol Tracking. Quantum. Election Security. Chucky Alert. Day Traders. Health, Safety & Environment. New Variants. Immunity, Vaccines, and Vaccination. And more.

Welcome to This Week’s [in]Security. PCI FAQs. Magecart surge. COVID test data. New breaches: 320M dating records. influencers. Access keys. New Ransomware. Facebook. Facial Recognition. IoT. TikTok. NIST Updates, Drafts & Workshops. Phish Scale. OneFuzz. Elections. Severe Vulnerability. MobileIron. Bluetooth. Firefox. Malicious QR. Wifi pwnage. Iranian, Chinese, and Russian hacking. @Failure to learn. IP Theft. Security Questions with Attitude. Quantum. Number Stations. Deepfake arms race. Boarding Passes. Hurricanes. Wildfires. Glaciers. Covid-19: Spread, Curves, Spikes, Waves, & reinfections. Lockdown, Reopening, & The New Normal. More of the Good, Bad, and Ugly. And more.

Welcome to This Week’s [in]Security. Fallout from US Unrest. Facebook Ad boycott. Covid-19: Spread & Curve. Lockdown, Reopening, & The New Normal. Herd Immunity? Airborne? More of the Good, Bad, and Ugly. CPoC Listing. Even more Magecart. Card Testing. Not an EMV Clone. BlueLeaks Updates. Billions of passwords. Contact tracing app problems. Facial Recognition. TikTok privacy. Anti-Tracking. Body Cam Blues. Tech, China, and Hong Kong. Right to repair. CFAA. Stalkerware. Secure Outsourcing paper. Accelerating vulnerabilities? Citrix. F5 Backdoor implants. IoT Backdoors. Security Cameras. eHealth. 100K WordPress sites. Zoom Zero-Day. Self-inflicted Crypto Injuries. OAuth attacks. Security Awareness ROI. Sharks. And more.

Welcome to This Week’s [in]Security. Trending: The great mask debate. Other PPE. The spread and curve. Projections. Responses. Behaviour - the good, the bad, and the ugly. Magecart. Breaches: Key Ring, Marriot (again), Dueling Network, Redis, Zoom. Equifax post-mortem. WFH and privacy. Zoom privacy. DHS biometric db. Meme privacy. EARN-IT. FISA abuse. Wi-Fi 6E. NIST updates and events. COVID Treatments, Innovation, Vaccines. In the water? Gearing up. More DoH. And More.

Welcome to This Week’s [in]Security. This week: New Magecart tricks, Gas Pump skimmers rush to beat liability shift upgrades, ransomware shutters company, breached medical imaging system, Starbucks leaks API keys, Facebook health, Google drops insecure Xiaomi cameras, CCPA live, NY's SHEILD Act, Credential Stuffing, Suing cybercriminals, Iran hacks back, TikTok ban, absurd 11 calls, defamation settlements, various year-end reviews. And more.

Welcome to This Week’s [in]Security. This week: PCI DSS 4 Comment Period. New PCI Contactless on COTS standard. EMVco and 3D Secure. A PCI Horror Story. Magecart. Carders. Breaches at top domain registrars, UniCredit (3rd times a charm), Bed Bath& Beyond, Desjardins breach numbers grow. Hall of shame - bank asking for other bank passwords. FB agrees to fine. Several articles on the ups and downs of facial recognition. Textalyzers?! ISPs called out for encrypted DNS lies. Bye, bye Flash!, Small quantum key distribution chip. Experimenting with post-quantum TLS. Delegated TLS credentials. ECC crypto timing attack. General attack on fingerprint readers.Random fail. SMS and Whatsapp hacking. FB sues NSO group. BlueKeep in the wild. Brain hacks. Amazon account fraud using non-Amazon devices. And more.