Patched Linux bugs nix Spectre mitigations Data Breach by Joe Uchill - March 30, 20210 Two Linux bugs patched this month could allow hackers to sidestep mitigations for the infamous Spectre vulnerability. (Justin Sullivan/Getty Images) Two Linux bugs patched this month could allow hackers to sidestep mitigations for the infamous Spectre vulnerability. “If left unpatched, the vulnerabilities mean that existing Spectre protections will not be sufficient
Three flaws that sat in Linux kernel since 2006 could deliver root privileges to attackers Data Breach by Teri Robinson - March 12, 20210 Entrance to the Red Hat headquarters. The company’s distributions of Linux kernels appear to be particularly susceptible to vulnerabilities unearthed recently. (Red Hat) Three recently unearthed vulnerabilities in the Linux kernel, located in the iSCSI module used for accessing shared data storage facilities, could allow root privileges to anyone with a
New malware tied to China targets Linux endpoints and servers Data Breach by Derek B. Johnson - March 10, 20210 New malware compiled on Red Hat Enterprise Linux uses a network data encoding scheme based on XOR, creates a backdoor in systems that gives an attacker near full control over infected machines. (“Linux password file” by Christiaan Colen is licensed under CC BY-SA 2.0) Researchers at Intezer found a new piece of malware targeting
Linux Foundation launches software signing service Data Breach by Joe Uchill - March 9, 20210 A sidewalk depiction of IBM’s Peace, Love, and Linux advertising campaign in 2001. The Linux Foundation is launching “sigstore,” a free-to-use software signing certificate authority open to all developers. (“Peace, Love, and Linux” by kino-eye is licensed under CC BY-NC-SA 2.0) The Linux Foundation is launching “sigstore,” a free-to-use software signing certificate authority open to
Researcher finds 5 privilege escalation vulnerabilities in Linux kernel Data Breach by Derek B. Johnson - March 4, 20210 Oracle Co-Founder Larry Ellison delivers a keynote address at the Oracle OpenWorld conference in 2006. A researcher found five similar vulnerabilities in the kernel of Linux operating systems that can allow an attacker to escalate local privileges on a victim’s network. (Justin Sullivan/Getty Images) A researcher at Positive Technologies found five
Google funds two Linux Foundation security roles Data Breach by Joe Uchill - February 25, 20210 The Manhattan Google headquarters is seen on January 25, 2021 in New York City. (Photo by Michael M. Santiago/Getty Images) Google is underwriting two Linux kernel security positions through the Linux Foundation, the company announced Wednesday. The effort support Google’s strategy “to help support the critical open source projects that
Bot ‘FreakOut’ leverages three critical vulnerabilities to attack Linux systems Data Breach by Steve Zurier - January 21, 20210 Oracle Co-Founder Larry Ellison delivers a keynote address at the Oracle OpenWorld conference in 2006. Researchers discovered a new Internet Relay Chat (IRC) bot Tuesday that exploited three vulnerabilities to launch distributed denial of service attacks, cryptomining and other security lapses on Linux systems. (Justin Sullivan/Getty Images) Researchers discovered a new
Linux machines again targeted by hackers with new memory loader Data Breach by Bradley Barth - January 8, 20210 Linux-based machines are no longer considered a major deterrent for cybercriminal groups, who are embracing the operating system as a target.(Solo se puede ser libre Cuándo no se tiene nada que perder/phylevn/CC BY 2.0) Linux-based machines are no longer considered a major deterrent for cybercriminal groups, who are embracing the operating
U.S. urges Linux users to secure kernels from new Russian malware threat Data Breach by Bradley Barth - August 20, 20200 The FBI and NSA jointly issued an advisory on Drovorub – a newly disclosed malware program targeting Linux systems. (Jan Woitas/picture alliance via Getty Images) Linux users should not assume they are safe from the ambitions and reach of reputed Russian hacking group Fancy Bear, which has been using a newly
Microsoft announces public preview of Microsoft Teams for Linux Cyber Security by Ron Miller - December 10, 20190 Today, Microsoft announced a public preview of Microsoft Teams for Linux, the first Office 365 tool that’s available for the open source operating system. The hope is that by making it available for preview, the company can get feedback from the community and improve it before it becomes generally available.