This Week's [in]Security - Issue 249

09 Jan 2022.

Welcome to This Week’s [in]Security. Skimmers, Training, Payments. Big-Hacks: Log4shell, EOL impediments, prevention, Log4-like vulns. New breaches: DatPiff, FlexBooker, Uscellular, McMenamins, healthcare. New Ransomware, Follow-ups & Fall-out. Privacy. Laws & Regs – US, World, Standards. Defense: cryptography, zero-day-repository, anti-extremism. Vulnerabilities, copied commands, Y2K22, android, vm ware, Bluetooth crypto. Cybercrime - Trends: Malsmoke, BadUSB, cyber-mercenaries, fake shut-downs. Supply chain sabotage. Nation States. Crime & Enforcement. Other Risks: Norton crypto-miner inside, Signal, AI & algorithms, false-positives. Health, Safety & Environment. Covid-19: Spread, Curves, Waves, and Variants; Response; Treatments; Immunity; Learned; Impact; Covid Compliance. Innovation and more.

News and announcements relating to Payment Security, PCI, Card Brands, Payments, Payment Malware and Fraud, and Payment Related Compliance.

Breaches / Ransomware / Leaks

Covering breaches, leaks, data exposures, ransomware (as potential breach), and their fallout.

Privacy

Articles about privacy related news, risks, and trends.

Laws, Regulations, Platforms, Standards, and Public Policy

News about laws, regulations, platform rules, and standards affecting security, privacy, technology, and public interest.

Defense / Techniques / Solutions

Covering developments and opportunities that may help improve security.

Bugs / Design Flaws / Vulnerabilities / Research

Articles about newly discovered vulnerabilities and research.

Hacking / Malware / Cybercrime / Exploitation

News covering active trends, alerts, events.

Other Security / Risk

Articles covering other types of risks.

COVID-19 updates.

COVID related articles. We have been following coronavirus risks since https://controlgap.com/blog/this-weeks-insecurity-issue-147.

Off-Topic / Science & Tech / Lighter Side

A variety of scientific, technical, historical, and more light-hearted news.