https://www.theguardian.com/news/2018/mar/20/facebook-data-cambridge-analytica-sandy-parakilas This has grown to a huge story! Hundreds of millions of Facebookusers are likely to have had their private information harvested by companies that exploited the same terms as the firm that collected data and passed it on to Cambridge Analytica, according to a new whistleblower. →
https://blog.github.com/2018-03-14-eu-proposal-upload-filters-code/ The EU is considering a copyright proposal that would require code-sharing platforms to monitor all content that users upload for potential copyright infringement (see the EU Commission’s proposed Article 13 of the Copyright Directive). The proposal is aimed at music and videos on streaming platforms. However, the way it’s written captures many other types →
https://www.extremetech.com/computing/265582-everything-surrounding-new-amd-security-allegations-reeks-hit-job CTS-Labs, has accused AMD of 13 serious security flaws within its products. Standard operating procedure in security disclosures; vendors are typically given at least a 90-day window to implement solutions. But in this case, AMD was notified a day ahead of the disclosure. →
https://www.smashingmagazine.com/2018/02/gdpr-for-web-developers/ Europe’s imminent privacy overhaul means that we all have to become more diligent about what data we collect, how we collect it, and what we do with it. In our turbulent times, these privacy obligations are about ethics as well as law. Web developers have a major role to play here. After all, healthy →
This posting is here to collect security alert news in March 2018. I post links to security vulnerability news to comments of this article. →
http://theinstitute.ieee.org/ieee-roundup/blogs/blog/2018-winter-olympics-a-prime-target-for-hackers Malware has already made its way into the 2018 Winter Olympics, but hopefully the organization is capable of keeping everything working well without serious problems. This article claims that hackers are deploying malware capable of disrupting this year’s Winter Olympic Games, in Pyeongchang, South Korea. The malware is claimed to have the potential to →
This posting is here to collect security alert news in February 2018. I post links to security vulnerability news to comments of this article. →
EDN magazine published today that a 15-year-old Richard Skrenta on winter break from high school wrote what is considered to be the first large-scale, self-spreading personal computer virus on January 30, 1982. The Elk Cloner virus attached itself to the Apple DOS 3.3 operating system on Apple II computer and spread by floppy disk. Elk →
https://opensource.com/article/18/1/securing-linux-filesystem-tripwire?sc_cid=7016000000127ECAAY Linux integrity checker notifies you if malware or other events make changes to your filesystem. Tripwire works on almost all Linux distributions; you can download an open source version from Sourceforge and install it. →
https://www.cyberciti.biz/tips/linux-unix-bsd-openssh-server-best-practices.html This page shows how to secure your OpenSSH server running on a Linux or Unix-like system to improve sshd security. Read also how to only allow ssh login using SSH keys https://www.cyberciti.biz/faq/how-to-disable-ssh-password-login-on-linux/ →