Tag: Open Source OS
-
Malicious Code in Linux xz Libraries Endangers SSH
You may never have heard of the xz data compression code, but it’s vital to numerous programs, and we now know someone has planted …
-
Beware! Backdoor found in XZ utilities used by many Linux distros (CVE-2024-3094)
A vulnerability (CVE-2024-3094) in XZ Utils, the XZ format compression utilities included in most Linux distributions, may “enable a …
-
FreeBSD Foundation hands out Beacon gongs for safer software
The inaugural Beacon Awards has handed three prizes to projects working on safer software for CHERI-enabled hardware running on the …
-
New Glibc Flaw Grants Attackers Root Access on Major Linux Distros
Malicious local attackers can obtain full root access on Linux machines by taking advantage of a newly disclosed security flaw in the GNU C …
-
Port Knocking Ubuntu Servers (or Containers) for More Secure SSH
You’ve probably read the usual things admins do with the Secure Shell (SSH), such as changing the port, preventing root logins, using …
-
Enable Automatic Updates for Ubuntu Server
Many admins tend to view Linux as a set-it-and-forget-it operating system. Once upon a time, that was a valid stance to take, especially …
-
An Introduction to Ubuntu’s ‘Uncomplicated’ Firewall
Is the firewall for Ubuntu Linux as easy to use as Canonical claims? You’d be hard-pressed to find an easier firewall system to help lock …
-
Cueing up a calculator: an introduction to exploit development on Linux
In this follow-up to my previous blog post, I’ll explain how to exploit CVE-2023-43641 (a memory corruption vulnerability in libcue) to …
-
Kinsing Crypto Malware Targets Linux Systems via Apache ActiveMQ Flaw
Active since 2020, the resurgence of the Kinsing malware poses a significant threat to Linux-based systems, infiltrating servers and …
-
Apache ActiveMQ bug exploited to deliver Kinsing malware
Attackers are exploiting a recently fixed vulnerability (CVE-2023-46604) in Apache ActiveMQ to install Kinsing malware and cryptocurrency …
-
Kinsing Hackers Exploit Apache ActiveMQ Vulnerability to Deploy Linux Rootkits
The Kinsing threat actors are actively exploiting a critical security flaw in vulnerable Apache ActiveMQ servers to infect Linux systems …
-
Kubernetes Access Vulnerability Found in Windows Nodes
If, by chance, you are running some Windows nodes somewhere in your Kubernetes clusters and you still utilize the pre-CSI internal plug-ins …
●●●