Thank you for reading the LinuxSecurity.com weekly security newsletter. The purpose of this document is to provide our readers with a quick summary of each week's most relevant Linux security headlines.

LinuxSecurity.com Feature Extras:

Guardian Digital Mail Systems: Designed to be Secure Without Fail - Resiliency is an important factor to consider when evaluating an email security solution, yet this characteristic often goes overlooked.

How SQL / NoSQL Databases Enable Blockchain Applications to Become GDPR Compliant - Blockchain, being a decentralized & dis-intermediated data store, is being considered for rapid adoption, in several industries like Supply Chain Management, P2P Global Transactions, Internet of Things, Electoral Voting, Stock Exchanges etc...

(Dec 30)

While hardcore cryptocurrency enthusiasts often tout blockchain for its heightened security, the technology is not perfect – and there are often tons of vulnerabilities in the code. Indeed, blockchain companies have received at least 3,000 vulnerability reports in 2018 alone.
The Linux Kernel In 2018 Summed Up: Spectre/Meltdown, CoC, Speck Fears, New Features (Dec 31)

It was a very busy year in kernel space from mitigating security vulnerabilities to preparing new features. Here is a look back at the most popular kernel topics of this year.
My Health Record had 42 data breaches in 2017-18 but no 'malicious' attacks: ADHA (Dec 31)

Australia's troubled My Health Record recorded 42 data breaches between July 1, 2017 and June 30, 2018, the Australian Digital Health Agency (ADHA) has said in its 2017-18 annual report [PDF].
EU offers bounties to help find security flaws in open source tools (Dec 30)

The European Union believes it has a simple way to bolster its digital security: offer lots of cold, hard cash. The European Commission is launching bug bounties in January that will offer prizes in return for spotting security flaws in 14 free, open source software tools EU institutions use.
Hackers Threaten to Dump Insurance Files Related to 9/11 Attacks (Jan 1)

On Monday, New Year's Eve, a hacker group announced it had breached a law firm handling cases related to the September 11 attacks, and threatened to publicly release a large cache of related internal files unless their ransom demands were met.
Did you #DeleteFacebook? Shady players can still exploit your data (Jan 2)

Did you #DeleteFacebook in 2018? Caring about our online privacy might be popular right now, but on a wider level, it's not as easy as we think to escape the hole we've dug ourselves into.
(Jan 1)

Every month sees the disclosure of a flood of new vulnerabilities, and it can be a challenge to keep up. Below, we look at 10 security flaws disclosed within the past few weeks.
Google Partially Patches Flaw in Chrome for Android 3 Years After Disclosure (Jan 3)

Google has finally patched a privacy vulnerability in its Chrome web browser for Android that exposes users' device model and firmware version, eventually enabling remote attackers to identify unpatched devices and exploit known vulnerabilities.
Dark Overlord hackers release alleged 9/11 lawsuit documents (Jan 3)

Bright new year, slimy return of The Dark Overlord (TDO), a well-known group of highly self-amusing cyber extortionists who've now chosen 9/11-related firms to pick on.
Hackers Target North Korean Defectors (Jan 2)

Personally identifiable information (PII) on nearly 1000 defectors from North Korea has been stolen in a cyber-raid, the South Korean government revealed late last week.
Vietnam's New Cyber Law Threatens Free Speech (Jan 2)

The Vietnamese government has passed a sweeping new cybersecurity law which critics claim will help the one-party state continue to crack down on free speech.
Singapore Airlines customer logs into account, sees stranger's personal data (Jan 5)

A Singapore Airlines (SIA) customer has reported an incident in which she was able to view someone else's personal data after successfully logging into the carrier's frequent flyer programme using her user ID and password.