LinuxSecurity.com

Syndikovat obsah LinuxSecurity - Security Articles
The central voice for Linux and Open Source security news.
Aktualizace: 40 min 5 sek zpět

Guide To Linux Network Protocols for Better Packet Processing

23 Květen, 2024 - 14:57
Modern computing depends heavily on networking to enable communication among systems and devices, with Linux as one OS that stands out for its versatility and robustness regarding network operations and security. Network protocols are formal policies and standards that define how data exchanged on networks occurs, including rules, procedures, formats, etc. They help ensure efficient device communications regardless of architecture design, making the Internet an invaluable source of data exchange across an endlessly variable landscape.
Kategorie: Hacking & Security

Critical Security Update for Google Chrome: Implications & Recommendations

23 Květen, 2024 - 13:00
The release of Google Chrome 124 addresses four vulnerabilities, including a critical security flaw that can enable attackers to execute arbitrary code. Over the next few days or weeks, the Google Stable channel will be updated to 124.0.6367.78 for Linux. As security practitioners, Linux admins, infosec professionals, and sysadmins must be aware of the implications of such vulnerabilities and take appropriate action.
Kategorie: Hacking & Security

PostgreSQL Security Vulns Allow for XSS, MFA Bypass

23 Květen, 2024 - 13:00
Two critical security vulnerabilities were found in pgAdmin, the open-source administration tool for PostgreSQL . The vulnerabilities assigned CVE-2024-4216 and CVE-2024-4215 affect the tool's cross-site scripting and multi-factor authentication features. As Linux admins, InfoSec professionals, and security enthusiasts, it is crucial to understand the implications of these vulnerabilities and discuss their long-term consequences for our security practices.
Kategorie: Hacking & Security

Exploring the Central Role of Linux in Quantum Computing

20 Květen, 2024 - 18:11
The intersection of Linux and quantum computing has become increasingly apparent, emphasizing the importance of Linux-based operating systems in developing and deploying quantum computing technologies. As quantum computing technology advances, there is a growing need for operating systems that can support quantum computing frameworks. This interdisciplinary discussion should be particularly interesting to Linux admins, infosec professionals, internet security enthusiasts, and sysadmins, as the impact on security and infrastructure is significant.
Kategorie: Hacking & Security

Empowering Linux and Open-Source Security with AI: Strategies, Tools and Best Practices

20 Květen, 2024 - 16:22
It's hard to think of a technology more impactful than Artificial Intelligence (AI) . While it's been around for a while, it's only recently broken into the mainstream. Now that it has, it's rewriting the playbook for much of the tech industry, especially open-source software (OSS).
Kategorie: Hacking & Security

Research Indicates All Linux Vendor Kernels Are Insecure - But There's a Fix!

20 Květen, 2024 - 15:55
Recent research sheds light on the security vulnerabilities prevalent in Linux vendor kernels due to flawed engineering processes that backport fixes. It emphasizes the importance of using the most up-to-date kernel releases for enhanced security, challenging the traditional vendor-bound kernel model.
Kategorie: Hacking & Security

How To Secure the Linux Kernel

20 Květen, 2024 - 13:00
With the support of the open-source community and a strict privilege system embedded in its architecture, Linux has security built into its design. That being said, gone are the days when Linux system administrators could get away with subpar security practices. Cybercriminals have come to view Linux as a viable attack target due to its growing popularity, the valuable devices it powers worldwide, and an array of dangerous new Linux malware variants that have emerged in recent years.
Kategorie: Hacking & Security

Kinsing Hacker Group Exploits More Flaws, Expands Cryptojacking Botnet

19 Květen, 2024 - 13:00
The Kinsing hacker group, or H2Miner, has been orchestrating illicit cryptocurrency mining campaigns since 2019 and poses a persistent security threat. The group continuously evolves its toolkit by integrating newly disclosed vulnerabilities to expand its botnet.
Kategorie: Hacking & Security

Gomir Linux Backdoor Deployed by Kimsuky APT in South Korean Cyberattacks

19 Květen, 2024 - 13:00
The Kimsuky APT group, reportedly linked to North Korea's Reconnaissance General Bureau (RGB), has been identified deploying a Linux version of its GoBear backdoor called Gomir. The Gomir backdoor is structurally similar to GoBear, leading to concerns within the cybersecurity community. The overlapping code between malware variants raises questions regarding the extent of the threat and the potential implications for targeted organizations.
Kategorie: Hacking & Security

Protect Your Linux Web Apps and Meet Compliance Standards

18 Květen, 2024 - 13:00
Security is vital for your Linux web apps, but keeping up with the latest exploits and meeting compliance standards can quickly become overwhelming.
Kategorie: Hacking & Security

Strategies for Improving Linux Security Through Cross-Browser Compatibility Testing

18 Květen, 2024 - 13:00
In the dynamic landscape of web development , ensuring that applications perform uniformly across various web browsers is a vital aspect of user experience. This becomes increasingly important for Linux systems, where the default browsers and configurations range presents unique challenges. Cross-browser compatibility testing on Linux helps to identify and resolve these discrepancies, thereby enhancing the accessibility and functionality of web applications for all users.
Kategorie: Hacking & Security

How to Keep Your Linux System Safe from Kernel Bugs

18 Květen, 2024 - 13:00
Linux admins and security practitioners face significant challenges in keeping their Linux systems secure amidst the constant threat of kernel bugs. Understanding and mitigating the vulnerabilities in the Linux kernel is essential in safeguarding your systems against exploits leading to compromise. Let's examine why kernel vulnerabilities are such a severe threat and mitigation strategies for protecting against them.
Kategorie: Hacking & Security

Thunderbird DoS, Info Disclosure Vulns Fixed in Ubuntu and Debian

16 Květen, 2024 - 21:51
Recent security updates for Ubuntu and Debian have been released to address vulnerabilities in Thunderbird, the popular open-source mail and newsgroup client. The identified vulnerabilities could result in denial of service attacks, unauthorized access to sensitive information, and the execution of arbitrary code. As Linux admins, infosec professionals, and security enthusiasts, it is crucial to understand the implications of these vulnerabilities and take necessary action to protect systems and data.
Kategorie: Hacking & Security

Spectre V2: A New Threat to Linux Systems

16 Květen, 2024 - 13:00
A significant security threat, known as the Spectre v2 exploit, has been observed targeting Linux systems running on modern Intel processors. Let's delve into the details of the Spectre v2 exploit, its implications, and the measures being taken to mitigate its impact.
Kategorie: Hacking & Security

400k Linux Servers Hacked in Massive Cryptocurrency-Mining Botnet

15 Květen, 2024 - 14:57
As cybersecurity practitioners, we are no strangers to the constant threat of malicious actors and the importance of remaining vigilant to protect our systems. Security researchers have identified a massive botnet comprising over 400,000 compromised Linux servers, reinforcing the need to stay alert and implement robust security measures.
Kategorie: Hacking & Security

EndeavorOS Gemini: A Secure, Stable & User-Friendly Linux Desktop

14 Květen, 2024 - 14:17
EndeavorOS Gemini is a captivating and charming desktop operating system based on Arch Linux. The new release includes a kernel upgrade, 3D graphics libraries, an updated Welcome app, and enough polish to make users feel like they're using something special. We must commend this release on its user-friendliness, beauty, security, stability, and reliability.
Kategorie: Hacking & Security

McGrail Foundation Celebrates 20 Years of Fighting Email Threats with Its KAM Ruleset

13 Květen, 2024 - 22:40
Cyber risk is increasing for individuals and organizations, making flexible and robust solutions for identifying spam and malware increasingly critical. Apache SpamAssassin is an anti-spam framework we stand behind and have been using in Guardian Digital EnGarde Cloud Email Security for decades as a component of our email security solution to help detect fraudulent and malicious mail.
Kategorie: Hacking & Security

Linux Kernel 6.9 Released with Critical Fixes & Upgrades

13 Květen, 2024 - 15:13
The recently released Linux Kernel 6.9 brings forth a blend of crucial upgrades and enhancements, catering to the ever-evolving needs of the Linux ecosystem. Linus Torvalds, the creator of Linux, underscores this by stating, "a more powerful arm64 machine (thanks to Ampere)," signaling promising optimizations for ARM64 architecture in this new release.
Kategorie: Hacking & Security

Nmap 7.95 Released with New OS and Service Detection Signatures

13 Květen, 2024 - 13:00
Nmap 7.95 introduces myriad enhancements, primarily focusing on OS and service detection signatures. This reflects the dedication of the Nmap community and the development team to improving network scanning capabilities.
Kategorie: Hacking & Security

Virtually All VPNs Are Vulnerable to Novel TunnelVision Attack

13 Květen, 2024 - 13:00
A novel attack called TunnelVision has been discovered. It compromises the security of virtually all VPN apps, rendering their purpose useless. The attack manipulates the DHCP server to divert VPN traffic to the attacker, allowing them to read, drop, or modify the traffic. This critical analysis aims to explore the implications of this attack for Linux admins, infosec professionals, internet security enthusiasts, and sysadmins.
Kategorie: Hacking & Security