LinuxSecurity.com

LinuxSecurity.com: In October, after Twitter refused to give a user information about how it tracks him when he clicks on links in tweets (as is the right of EU citizens under the newly passed, sweeping General Data Protection Regulation [GDPR] privacy law), Irish privacy authorities launched an investigation into the platform's privacy practices.

LinuxSecurity.com: Since most security tools also keep an eye on the network traffic to detect malicious IP addresses, attackers are increasingly adopting infrastructure of legitimate services in their attacks to hide their malicious activities.

LinuxSecurity.com: The CNIL, the French data protection watchdog, has issued its first GDPR fine of $57 million (50 million). The regulatory body claims that Google has failed to comply with the General Data Protection Regulation (GDPR) when new Android users set up a new phone and follow Android's onboarding process.

LinuxSecurity.com: Malicious websites can exploit browser extension APIs to execute code inside the browser and steal sensitive information such as bookmarks, browsing history, and even user cookies.

LinuxSecurity.com: An Austrian non-profit organization, noyb, has filed suit under GDPR against eight firms for non-compliance with the privacy regulation. The suit named Apple, Amazon, Netflix, Spotify, Youtube, and three others for violating the terms of the European law.

LinuxSecurity.com: It's entirely 2019, but that doesn't mean it's too late to look at lists of superlatives from 2018. In one of the latest, a security firm has released its list of the top application security vulnerabilities of 2018.

LinuxSecurity.com: In early December, Facebook's developer team declared the discovery of a security bug that gave developers access to photos users hadn't shared on their timeline, including photos they had posted in Facebook Marketplace or Stories.

LinuxSecurity.com: North Korean hackers fooled a Redbanc employee into a fake job interview over Skype and then tricked him into downloading malware onto his work computer to get access to the company's interbank network, according to a report by Chilean news site trendTIC.

LinuxSecurity.com: Many people will land on this page after learning that their email address has appeared in a data breach I've called "Collection #1". Most of them won't have a tech background or be familiar with the concept of credential stuffing so I'm going to write this post for the masses and link out to more detailed material for those who want to go deeper.

LinuxSecurity.com: Massive TVs with razor-thin frames, brilliant image quality, and streaming services built-in are more affordable than ever thanks to companies like Vizio and TCL. If you want a 65-inch 4K smart TV with HDR capability, one can be purchased for below $500 - a surprisingly low price for such a massive piece of technology, nonetheless one that's likely to live in your home for years before you upgrade.

LinuxSecurity.com: Putting up a good and long password is advised by cybersecurity, however, cybersecurity doesn't teach us how to identify the hacker hacking into your computer. It doesn't matter how strong you are creating passwords, there is always be an option for hackers to crack your passwords.

LinuxSecurity.com: The current federal government shutdown, the longest in United States history, is in its fourth week, with no clear path to resolution. With 800,000 federal employees on full or partial leave as a result, cybersecurity experts raised an early alarm about how the shutdown would impact US cybersecurity.

LinuxSecurity.com: Intel last week released six advisories covering a range of products, the most interesting of which is a flaw discovered in the company's Software Guard Extensions (SGX) built into all Intel processors since the company's sixth-generation Skylake processors in 2015.

LinuxSecurity.com: Cyberattacks and their potential to cripple critical infrastructure remain one of the biggest risks facing the world today, the World Economic Forum (WEF) has warned.

LinuxSecurity.com: Singapore Health Services (SingHealth) has been fined S$250,000 while Integrated Health Information Systems (IHIS), the IT agency responsible for Singapore's public healthcare sector, is slapped with a S$750,000 fine, for failing to take adequate security measures to safeguard personal data. The oversight had contributed to the July 2018 cybersecurity attack that compromised personal details of 1.5 million SingHealth patients, and breached their data protection obligations outlined in Singapore's Personal Data Protection Act.

LinuxSecurity.com: Two major UK high street banks have started to send out replacement cards for some of their customers, nine months after one lender reported fraudulent activity to Ticketmaster.

LinuxSecurity.com: A Surrey man has been jailed for 32 months after admitting to launching distributed denial-of-service (DDoS) attacks against an African telco.

LinuxSecurity.com: Officials based at the City of Del Rio, in Texas, were forced to abandon electronic services and switch to pen and paper after a ransomware attack effectively closed down City Hall servers.

LinuxSecurity.com: Many Linux sysadmins and users dislike Systemd, but love it or hate it, the Systemd is the default system and service manager for most Linux distributions. So, security company Qualys's recent revelation of three new Systemd security vulnerabilities isn't going to win Systemd any friends.

LinuxSecurity.com: AI has already taken the private sphere by storm, with massive corporations, dynamic startups, and even our own living rooms playing host to intelligent machine learning software. It's no big surprise, then, that the world of government is starting to turn to AI to improve its effectiveness in serving populations large and small.