Security Leftovers
-
Next-Gen Linux Malware Takes Over Devices With Unique Tool Set [Ed: It's not Linux that welcomes that malware; the malware gets there by other means and once installed it can do anything it wants. Not an OS issue. You can drive your car off a cliff. That doesn't mean the car is not safe. FOSSlife Team promotes this shallow puff.]
-
Cyber Security Headlines: CISA incident reporting, Linux-focused IoT malware, Albania cuts ties over cyberattack [Ed: The issue isn't Linux itself; they're misplacing the blame, just like Microsoft wants them to (Microsoft does this too)]
-
Security updates for Thursday [LWN.net]
Security updates have been issued by Debian (libgoogle-gson-java), Fedora (autotrace, insight, and open-vm-tools), Oracle (open-vm-tools), Red Hat (open-vm-tools, openvswitch2.13, openvswitch2.15, openvswitch2.16, openvswitch2.17, ovirt-host, and rh-nodejs14-nodejs and rh-nodejs14-nodejs-nodemon), Scientific Linux (open-vm-tools), Slackware (python3), SUSE (clamav, gdk-pixbuf, gpg2, icu, ImageMagick, java-1_8_0-ibm, libyajl, mariadb, udisks2, webkit2gtk3, and yast2-samba-provision), and Ubuntu (dnsmasq).
-
#PrivacyOfThePeople: The flight is about to take off…. with your luggage and data!
On August 08, 2022, the Central Board of Indirect Taxes and Customs (“CBITC”) under the Ministry of Finance recently notified the Passenger Name Record Information Regulations, 2022 (“Regulations”) under the Customs Act, 1962. As per the Regulations, all registered airlines will have to mandatorily provide details of all international passengers, flying to or from India, to the Customs department. The details to be shared include a total of 19 passenger data points listed under ‘Annexure-II’ of the Regulations, several of which fall under the category of personal data as defined by the General Data Protection Regulation (“GDPR”). Such over-broad sharing of personal data and non-personal data, i.e., at scale, raises several privacy concerns, especially given the recent withdrawal of the draft Data Protection Bill (“DPB”), 2021.