UChecker tool scans Linux servers for outdated libraries Data Breach by Steve Zurier - June 16, 20210 Oracle Co-Founder Larry Ellison delivers a keynote address at the Oracle OpenWorld conference in 2006. Security teams running Linux servers now have access to UChecker, a new tool from CloudLinux that runs scans on Linux servers to detect outdated shared libraries on both disk and in memory.(Justin Sullivan/Getty Images) Security teams
Chrome 91 features 32 security fixes, enhancements for Linux Data Breach by Steve Zurier - May 27, 20210 Google on Tuesday announced Chrome 91, which includes 32 security fixes, lots of usability features, and notably, that the ChromeOS will now support Linux. This latest version of Chrome supports DoH, or DNS-over-HTTPS, said Sean Nikkel, senior cyber threat intel analyst at Digital Shadows. Nikkel said the DoH feature was previously
Patched Linux bugs nix Spectre mitigations Data Breach by Joe Uchill - March 30, 20210 Two Linux bugs patched this month could allow hackers to sidestep mitigations for the infamous Spectre vulnerability. (Justin Sullivan/Getty Images) Two Linux bugs patched this month could allow hackers to sidestep mitigations for the infamous Spectre vulnerability. “If left unpatched, the vulnerabilities mean that existing Spectre protections will not be sufficient
Three flaws that sat in Linux kernel since 2006 could deliver root privileges to attackers Data Breach by Teri Robinson - March 12, 20210 Entrance to the Red Hat headquarters. The company’s distributions of Linux kernels appear to be particularly susceptible to vulnerabilities unearthed recently. (Red Hat) Three recently unearthed vulnerabilities in the Linux kernel, located in the iSCSI module used for accessing shared data storage facilities, could allow root privileges to anyone with a
New malware tied to China targets Linux endpoints and servers Data Breach by Derek B. Johnson - March 10, 20210 New malware compiled on Red Hat Enterprise Linux uses a network data encoding scheme based on XOR, creates a backdoor in systems that gives an attacker near full control over infected machines. (“Linux password file” by Christiaan Colen is licensed under CC BY-SA 2.0) Researchers at Intezer found a new piece of malware targeting
Linux Foundation launches software signing service Data Breach by Joe Uchill - March 9, 20210 A sidewalk depiction of IBM’s Peace, Love, and Linux advertising campaign in 2001. The Linux Foundation is launching “sigstore,” a free-to-use software signing certificate authority open to all developers. (“Peace, Love, and Linux” by kino-eye is licensed under CC BY-NC-SA 2.0) The Linux Foundation is launching “sigstore,” a free-to-use software signing certificate authority open to
Researcher finds 5 privilege escalation vulnerabilities in Linux kernel Data Breach by Derek B. Johnson - March 4, 20210 Oracle Co-Founder Larry Ellison delivers a keynote address at the Oracle OpenWorld conference in 2006. A researcher found five similar vulnerabilities in the kernel of Linux operating systems that can allow an attacker to escalate local privileges on a victim’s network. (Justin Sullivan/Getty Images) A researcher at Positive Technologies found five
Google funds two Linux Foundation security roles Data Breach by Joe Uchill - February 25, 20210 The Manhattan Google headquarters is seen on January 25, 2021 in New York City. (Photo by Michael M. Santiago/Getty Images) Google is underwriting two Linux kernel security positions through the Linux Foundation, the company announced Wednesday. The effort support Google’s strategy “to help support the critical open source projects that
Bot ‘FreakOut’ leverages three critical vulnerabilities to attack Linux systems Data Breach by Steve Zurier - January 21, 20210 Oracle Co-Founder Larry Ellison delivers a keynote address at the Oracle OpenWorld conference in 2006. Researchers discovered a new Internet Relay Chat (IRC) bot Tuesday that exploited three vulnerabilities to launch distributed denial of service attacks, cryptomining and other security lapses on Linux systems. (Justin Sullivan/Getty Images) Researchers discovered a new
Linux machines again targeted by hackers with new memory loader Data Breach by Bradley Barth - January 8, 20210 Linux-based machines are no longer considered a major deterrent for cybercriminal groups, who are embracing the operating system as a target.(Solo se puede ser libre Cuándo no se tiene nada que perder/phylevn/CC BY 2.0) Linux-based machines are no longer considered a major deterrent for cybercriminal groups, who are embracing the operating