Thank you for reading the LinuxSecurity.com weekly security newsletter. The purpose of this document is to provide our readers with a quick summary of each week's most relevant Linux security headlines.

LinuxSecurity.com Feature Extras:

Press Release: Guardian Digital Leverages the Power of Open Source to Combat Evolving Email Security Threats - Cloud-based email security solution utilizes the open source methodology for securing business email, recognized by many as the best approach to the problem of maintaining security in the relentlessly dynamic environment of the Internet.

You've Been Pwned! Best Practices to Prevent Your Email Account from Being Compromised in a Data Breach - An Interview with Dave Wreski, CEO of Guardian Digital

  The GitHub extortion victims are outsmarting their Bitcoin scammers (May 6)
 

Blackmailers have been wiping GitHub repositories and withholding code to extort Bitcoin BTC from their victims. Over 390 respos have been affected, but so far, the attackers haven't made enough to even buy a coffee.
  Looking Ahead To Red Hat Enterprise Linux 8.0 News During Red Hat Summit 2019 Week (May 6)
 

Kicking off Tuesday in Boston is Red Hat Summit 2019 where Red Hat Enterprise Linux 8.0 could be released or at least hearing more about the company's plans for releasing this next major installment of RHEL.
  Russian Nation-State Group Employs Custom Backdoor for Microsoft Exchange Server (May 7)
 

A well-known Russian nation-state hacking group has been infiltrating the Microsoft Exchange email servers of its targeted victims since at least 2014 via a custom backdoor.
  TRON critical security flaw could break the entire blockchain (May 7)
 

A critical security flaw has been discovered in the TRON network which had the potential to render the ecosystem's blockchain useless.
  Unpatched Flaw in UC Browser Apps Could Let Hackers Launch Phishing Attacks (May 8)
 

A bug hunter has discovered and publicly disclosed details of an unpatched browser address bar spoofing vulnerability that affects popular Chinese UC Browser and UC Browser Mini apps for Android.
  Mozilla offers research grant for a way to embed Tor inside Firefox (May 9)
 

Mozilla is looking for a more efficient way of integrating Tor into Firefox, and the organization is willing to throw money at the problem.
  Google’s case for privacy is more convincing than Facebook’s (May 8)
 

Google, the search giant which has made its business to make money off our digital habits, is getting serious about privacy.
  3 Stories That Take Big Data and AI Beyond the Buzz (May 11)
 

Artificial Intelligence (AI), machine learning (ML), and big data seem to be the buzzwords of the decade. We're not just talking robots or autonomous cars -- AI and ML's reach will surely be beyond that. What that really is has been yet to be determined, but the technology will surely stretch across all that SDxCentral covers including 5G, IoT, security, SDN, NFV, and monitoring.
  Only 0.25% of Reported Data Breaches Have Led to Fines Since GDPR (May 10)
 

New data has discovered that a minute percentage of data breaches closed by the Information Commissioner's Office (ICO) since the GDPR came into force have resulted in monetary punishments.
  New Intel firmware boot verification bypass enables low-level backdoors (May 12)
 

Researchers have found a new way to defeat the boot verification process for some Intel-based systems, but the technique can also impact other platforms and can be used to compromise machines in a stealthy and persistent way.
  Turkey fines Facebook for December 2018 API bug (May 11)
 

The Turkish Personal Data Protection Authority (KVKK) fined Facebook today 1.65 million Turkish lira ($270,000) for an API bug that exposed personal photos of 300,000 Turkish users.
  Two people indicted for massive Anthem health data breach (May 13)
 

The US thinks it knows who's behind the vast breach that siphoned off 78.8 million customer and employee records from US health insurer Anthem between 2014 and 2015.
  Study finds Android smartphones riddled with suspect ‘bloatware’ (May 13)
 

One of the oft-discused downsides of choosing an Android device is the phenomenon of pre-loaded "bloatware."