LinuxSecurity.com

LinuxSecurity.com: There is no comfortable way for an organisation to learn that its website is leaking customer data but one of the most alarming must surely be getting that bad news from a journalist.

LinuxSecurity.com: According to data released earlier this year, the most expensive data breaches start with third parties. Whether it is from poor configuration of online resources managed by a service provider, insecure third-party software, or insecure communication channels with partners, working with third parties can expose organizations to a ton of risks if they don't pay close enough attention.

LinuxSecurity.com: Multiple vulnerabilities in a popular healthcare software provider's products may have put at risk the data of over 90 million patients.

LinuxSecurity.com: Opening Black Hat USA in Las Vegas, Black Hat founder Jeff Moss commented on the convergence of cybersecurity and political issues and said that world events "have caught up with us and we're being tested."

LinuxSecurity.com: The vast majority of IT decision makers appear to believe the hype surrounding artificial intelligence as a means to enhance cybersecurity.

LinuxSecurity.com: Highly sensitive data on over 2.3 million Mexican patients has been exposed via a misconfigured MongoDB installation.

LinuxSecurity.com: Last month's cyber-attack on SingHealth, which resulted in the breach of 1.5 million health records, might have been the work of an advanced persistent threat group, according to information disclosed by S. Iswaran, Singapore's minister for communications and information in Parliament today.

LinuxSecurity.com: Security researchers are warning Linux system users of a bug in the Linux kernel version 4.9 and up that could be used to hit systems with a denial-of-service attack on networking kit.

LinuxSecurity.com: Taiwanese semiconductor firm TSMC has revealed that a malware outbreak which affected its IT systems last week could result in a 3% hit to revenue.

LinuxSecurity.com: Privacy International has written to the investigatory powers commissioner (IPC) requesting an urgent review into potentially unlawful use by the UK police of mobile phone extraction (MPE) technology.

LinuxSecurity.com: Amnesty International has been spearphished by a WhatsApp message bearing links to what the organization believes to be malicious, powerful spyware: specifically, Pegasus, which has been called History's Most Sophisticated Tracker Program.

LinuxSecurity.com: DEF CON is kicking its Voting Village hacking event up a notch this year with a contest for kids to try their hand at hacking into replica election-results websites to change vote tallies and election results.