Thank you for reading the LinuxSecurity.com weekly security newsletter. The purpose of this document is to provide our readers with a quick summary of each week's most relevant Linux security headlines.

LinuxSecurity.com Feature Extras:

- Social engineering is the practice of learning and obtaining valuable information by exploiting human vulnerabilities. It is an art of deception that is considered to be vital for a penetration tester when there is a lack of information about the target that can be exploited.

- When you’re dealing with a security incident it’s essential you – and the rest of your team – not only have the skills they need to comprehensively deal with an issue, but also have a framework to support them as they approach it. This framework means they can focus purely on what they need to do, following a process that removes any vulnerabilities and threats in a proper way – so everyone who depends upon the software you protect can be confident that it’s secure and functioning properly.

  (Feb 26)
 

Iridium is a web browser based on Chromium project. It has been customized to not share your data and thus keeping your privacy intact.
  (Feb 28)
 

NEWS ANALYSIS: The use of blockchain's digital ledger is a growing trend because it offers a new level of security in business transactions that wasn't available previously. With security at the top of everybody's list for finding new solutions fast, this idea has caused a lot of interest in a short period of time.
  (Feb 27)
 

In what appears to be a major breakthrough for law enforcement, and a possible privacy problem for Apple customers, a major U.S. government contractor claims to have found a way to unlock pretty much every iPhone on the market.
  (Feb 26)
 

Letters sent to the United States Congress by Intel and the other six companies in the Meltdown/Spectre disclosure cabal have revealed how and why they didn't inform the wider world about the dangerous chip design flaws.
  (Mar 2)
 

Did your screen just turn black or your laptop freeze without warning? Maybe your hard drive has started chirping. Worse yet, maybe you suddenly can't save to your home partition.
  (Feb 27)
 

Security researcher Troy Hunt has added more than 80 million records from nearly 3,000 new data breaches to Have I Been Pwned (HIBP). That is so many records that it is currently ranked as the 15th biggest data breach on Have I Been Pwned.
  23,000 HTTPS certs will be axed in next 24 hours after private keys leak (Mar 1)
 

Customers of HTTPS certificate reseller Trustico are reeling after being told their website security certs – as many as 23,000 – will be rendered useless within the next 24 hours.
  (Mar 1)
 

A flaw in the implementation of the UDP protocol for Memcached servers can allow anyone to launch a massive Distributed Denial of Service (DDoS) attack with little effort.
  Russia behind compromise of seven states' voter registration systems (Mar 1)
 

While at least two of the states compromised - Wisconsin and Florida - voted for Trump by slim margins, one and 1.2 percent, respectively, NBC News cited three intelligence officials as saying that no votes had been altered nor had anyone been deleted from voter rolls.
  (Feb 28)
 

DNSSEC, which secures the ancient domain name system, is important to Internet security and privacy, but as APNIC luminary Geoff Huston wrote last week, there's evidence that its use could be declining. "From the validation perspective, the use of DNSSEC appeared to have peaked in early 2016 and has been declining since then", his post stated.
  (Feb 28)
 

Standing in the sunshine outside the Capitol, Democratic Congressional leaders bantered, laughed, and made impassioned speeches Tuesday after formally introducing two bills to restore net neutrality.
  Mozilla Firefox 59 Web Browser Promises New Privacy and Security Features (Mar 2)
 

Mozilla is currently working on the next stable release of its popular Firefox web browser, version 59, which is expected to land in the second week of March with new privacy and security features.