Welcome to This Week’s [in]Security. We’ve collected and grouped together a selection of this week’s news and opinion links on security and privacy related topics. We hope you enjoy and find them useful.

PCI Compliance and Payments

• SWIFT releases security standards and self-attestation process http://www.pymnts.com/news/security-and-risk/2017/swift-releases-customer-secruity-guidance/
• Discussion of risks of marketing/security trade-off https://krebsonsecurity.com/2017/05/should-saas-companies-publish-customers-lists/

Breaches

• Target reaches settlment with states over 2013 breach http://www.databreachtoday.com/target-reaches-185-million-breach-settlement-states-a-9942
• More healthcare breaches https://krebsonsecurity.com/2017/05/molinahealthcare-com-exposed-patient-records/
• Follow-up on Chipolte Breach https://www.chipotle.com/security

Lawful Access / Back-doors / Regulations

• Illinois passed privacy transparency laws https://www.eff.org/deeplinks/2017/05/illinois-advances-right-know-digital-privacy-bills

Bugs

• IoT fallout? UK backs off Smart Meters https://www.lightbluetouchpaper.org/2017/05/23/rip-smart-meters/

Privacy

• EPIC tells Congress to limit use of Social Security Numbers https://epic.org/2017/05/epic-tells-congress-limit-use-.html
• Lifting some secrecy on NSA Internet Surveillance https://www.eff.org/deeplinks/2017/05/judge-orders-government-provide-evidence-about-internet-backbone-upstream
• Google tracking billions of credit card transactions http://www.pymnts.com/news/2017/google-machine-learning-using-credit-card-data-to-track-when-online-users-visit-brick-and-mortar-stores-and-make-a-credit-card-purchase/
• Mapping Facebook's hidden power http://www.bbc.co.uk/news/business-39947942

Hacking / Malware

• Russia arrests 20 cybercriminmals https://www.theregister.co.uk/2017/05/23/russiaarrests20formalware_distribution/
• LNK files increasingly used as attack vectors http://blog.trendmicro.com/trendlabs-security-intelligence/rising-trend-attackers-using-lnk-files-download-malware
• 64-bit malware on the rise https://www.theregister.co.uk/2017/05/24/64bit_malware/
• IoT and Randsomware https://www.schneier.com/blog/archives/2017/05/ransomwareand\.html

Other Security / Risk

• Citizen Lab report on Tainted Leaks Disinformation Campaign https://deibert.citizenlab.org/2017/05/from-russia-with-tainted-love/
• DEFCON to take on US voting machines https://www.theregister.co.uk/2017/05/24/defconhackersprobeuselectioncomputers/
• Dirty top-level domians https://www.theregister.co.uk/2017/05/23/maliciousgtldhotspot_study/
• Private Investigator charged with abusing IRS tax tool in failed attempt to get Trump's tax records https://krebsonsecurity.com/2017/05/private-eye-allegedly-used-leaky-goverment-tool-in-bid-to-find-tax-data-on-trump/
• Schneier on the future of Randsomware  https://www.schneier.com/blog/archives/2017/05/thefutureof_r.html
• Analysis of the laptop ban https://www.schneier.com/blog/archives/2017/05/extendingthea.html
• Security isn't a technology problem http://www.darkreading.com/application-security/with-billions-spent-on-cybersecurity-why-are-problems-getting-worse/a/d-id/1328896
• Finger Print Readers may be vulnerable to "Master Print" attacks https://www.schneier.com/blog/archives/2017/05/hacking_fingerp.html

Off-Topic

• Google's Go playing AI beats world champion in first of five matches http://www.bbc.co.uk/news/technology-40012617
• A look at Von Braun's Mars Vision, the cancelled Apollo Missions, and Apollo Extensions program https://www.universetoday.com/135672/mars-project-von-brauns-ideas-mars-mission-collaboration-vintage-space/