Thank you for reading the LinuxSecurity.com weekly security newsletter. The purpose of this document is to provide our readers with a quick summary of each week's most relevant Linux security headlines.

LinuxSecurity.com Feature Extras:

- In this interview, Dave Wreski discusses Guardian Digital's highly effective email security solutions and the myriad advantages of investing in these solutions to secure your email.

- Social engineering is the practice of learning and obtaining valuable information by exploiting human vulnerabilities. It is an art of deception that is considered to be vital for a penetration tester when there is a lack of information about the target that can be exploited.

  White Hat Spoofs 2FA, Sends User to Phishing Page (May 14)
 

Social engineering tactics are the bread and butter of hackers. Preying on trust, malicious actors are able to lure users into sharing personal information, even login credentials.
  (May 15)
 

Chili's Grill & Bar, a restaurant brand owned by Dallas-based Brinker International, said some of its restaurants were hit with a cyberattack which may have resulted in compromise of users' payment card data. It believes the incident was limited to March and April 2018.
  US Government Cybersecurity at a Crossroads (May 16)
 

Amid a report today that the Trump White House plans to cut the administration's cybersecurity coordinator position altogether, new data shows how US federal government agencies continue to struggle to close security holes in their software.
  Open Source AI For Everyone: Three Projects to Know (May 13)
 

At the intersection of open source and artificial intelligence, innovation is flourishing, and companies ranging from Google to Facebook to IBM are open sourcing AI and machine learning tools.
  (May 17)
 

Some 85% of IT professionals believe their country will suffer a major critical infrastructure cyberattack in the next five years and 64% say they're more concerned this year than last about connected device threats in their organizations - and slightly fewer are actually doing anything about Internet of Things security.
  Mexican Banks Lose Millions in SWIFT-like Attacks (May 15)
 

As many as five Mexican banks may have been targeted by what appears to be a highly co-ordinated cyber-attack in which unauthorized transfers were made to bogus accounts.
  (May 15)
 

Anyone using PGP to encrypt their email could have their messages exposed thanks to a severe vulnerability for which there's no proper fix. That's according to researchers in Germany, who said anyone using plug-ins allowing simple use of PGP should stop using them entirely and possibly delete them too.
  (May 13)
 

The FBI's Internet Crime Complaint Center (IC3) logged more than 301,000 complaints of Internet crimes last year that resulted in losses of more than $1.4 billion -- and that's just from consumers and businesses that reported incidents to the bureau.
  DHS Unveils National Cybersecurity Risk Strategy (May 17)
 

The Department of Homeland Security (DHS) unveiled on Tuesday, 14 May, a new national strategy to be implemented to address evolving cybersecurity risks. The DHS strategy outlines strategic and operational goals and priorities to successfully execute the full range of the DHS secretary's cybersecurity responsibilities.
  (May 16)
 

Airports are ill-equipped to deal with a major cyber-attack, according to new research from PA Consulting Group.
  New Research Seeks to Shorten Attack Dwell Time (May 18)
 

One of the major issues in IT security is not that attacks and exploits are successful. It's that they're successful and then go unnoticed for so long.
  (May 14)
 

UK cybercrime activity rose again in "scale and complexity" last year, with the lines between nation state and criminal groups increasingly blurred, according to the National Crime Agency (NCA).