Thank you for reading the LinuxSecurity.com weekly security newsletter. The purpose of this document is to provide our readers with a quick summary of each week's most relevant Linux security headlines.

LinuxSecurity.com Feature Extras:

Linux and Open Source FAQs: Common Myths and Misconceptions Addressed - LinuxSecurity debunks some common myths and misconceptions regarding open source and Linux by answering a few Linux-related frequently asked questions.

New & Improved LinuxSecurity Site Coming Soon! - After many months of development by a dedicated team of programmers and beta testers, the new LinuxSecurity is almost ready! With an all new look & feel, organizational changes, security events, and additions to our staff, we hope to better serve the Linux and open source community. Although there are many aesthetic improvements, a major part of our development has focused on creating a content structure and backend system that is easy to update.

  UK Banks Reported 480% More Breaches in 2018 (Feb 25)
 

The UK's financial services regulator saw the number of data breaches reported to it grow by 480% from 2017 to 2018, according to a new report.
  ICANN Warns of 'Ongoing and Significant' Attacks Against Internet's DNS Infrastructure (Feb 25)
 

The internet's address book keeper has warned of an "ongoing and significant risk" to key parts of the domain name system infrastructure, following months of increased attacks.
  Wendy’s to pay $50M in data breach settlement (Feb 26)
 

Wendy's has agreed to pay $50 million to settle negligence claims following its 2015-2016 data breach that affected more than 1,000 of the burger chain's locations.
  Judge says Washington state cyberstalking law violates free speech (Feb 26)
 

Washington was one of the first states to fight cyberstalking through legislation, but it may have to rethink its approach. A federal judge has blocked the state's 2004 law after ruling that a key provision violated First Amendment protections for free speech due to vague terms.
  Holes in 4G and 5G Networks Could Let Hackers Track Your Location (Feb 27)
 

Over the past 18 months, revelations about wireless carriers selling smartphone location data to third parties have forced telecoms to promise reform. Worryingly, but perhaps not surprisingly, these user protections have been slow to actually materialize . Even if carriers shape up, though, an attacker can still track a smartphone's location and snoop on phone calls thanks to newly discovered flaws in 4G and even 5G protocols.
  Google Chrome zero-day used in the wild to collect user data via PDF files (Feb 28)
 

A security firm said this week that it discovered PDF documents exploiting a Google Chrome browser zero-day. The vulnerability allowed attackers to collect data from users who opened PDF files inside Chrome's built-in PDF viewer.
  FCC Says Gutting ISP Oversight Was Great For Broadband (Feb 27)
 

The FCC this week proclaimed that broadband connectivity saw unprecedented growth last year thanks to agency policies like killing net neutrality. The problem? That doesn't appear to be true.
  Qbot malware's back, and latest strain relies on Visual Basic script to slip into target machines (Mar 1)
 

A new version of the decade-old banking credential-stealing Qbot malware is doing the rounds, according to infosec firm Varonis.
  Targeted malware attacks against Elasticsearch servers surge (Feb 28)
 

Unsecured Elasticsearch clusters are being targeted in a fresh wave of attacks designed to drop both malware and cryptocurrency mining software.
  Hackers have started attacks on Cisco RV110, RV130, and RV215 routers (Mar 3)
 

Two days after Cisco patched a severe vulnerability in a popular brand of SOHO routers, and one day after the publication of proof-of-concept code, hackers have started scans and attacks exploiting the said security bug to take over unpatched devices.
  Revealed: Facebook’s global lobbying against data privacy laws (Mar 3)
 

Facebook has targeted politicians around the world including the former UK chancellor, George Osborne promising investments and incentives while seeking to pressure them into lobbying on Facebook's behalf against data privacy legislation, an explosive new leak of internal Facebook documents has revealed.
  As Trump and Kim Met, North Korean Hackers Hit Over 100 Targets in U.S. and Ally Nations (Mar 4)
 

North Korean hackers who have targeted American and European businesses for 18 months kept up their attacks last week even as President Trump was meeting with North Korea's leader in Hanoi.