Tag: linux
-
Actively exploited Linux kernel flaw requires immediate remediation
First seen on scworld.com Jump to article: www.scworld.com/brief/cisa-actively-exploited-linux-kernel-flaw-requires-immediate-remediation
-
Lazarus Group tricks job seekers on LinkedIn with crypto-stealer
North Korea-linked Lazarus Group is duping job seekers and professionals in an ongoing campaign that runs a LinkedIn recruiting scam to capture browser credentials, steal crypto wallet data, and launch persistence.According to a discovery made by BitDefender Labs, threat actors reach out with fake LinkedIn job offers to lure the victims into downloading and executing…
-
CISA warnt vor Angriffen auf Linux, Apache OFBiz, .NET und Paessler PRTG
DIe US-amerikanische Cybersicherheitsbehörde CISA warnt vor beobachteten Angriffen auf Lücken in Linux, Apache OFBiz, .NET und Paessler PRTG. First seen on heise.de Jump to article: www.heise.de/news/CISA-warnt-vor-Angriffen-auf-Linux-Apache-OFBiz-NET-und-Paessler-PRTG-10271835.html
-
Ubuntu Officially Available on the Updated Windows Subsystem for Linux
Ubuntu has announced its availability on Microsoft’s new tar-based Windows Subsystem for Linux (WSL) distribution architecture. This enhancement simplifies deployment and improves scalability, making Ubuntu on WSL more accessible and optimized for enterprise environments. Ubuntu has long been a popular choice among developers using WSL, thanks to its robust ecosystem and compatibility with development tools.…
-
Mixing Rust and C in Linux likened to cancer by kernel maintainer
Some worry multi-lang codebase makes it harder to maintain open source uber-project, others disagree First seen on theregister.com Jump to article: www.theregister.com/2025/02/05/mixing_rust_and_c_linux/
-
U.S. CISA adds Linux kernel flaw to its Known Exploited Vulnerabilities catalog
Tags: android, attack, cisa, cve, cybersecurity, exploit, infrastructure, kev, linux, vulnerability, zero-dayU.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Linux kernel vulnerability to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a Linux kernel vulnerability, tracked as CVE-2024-53104, to its Known Exploited Vulnerabilities (KEV) catalog. The February 2025 Android security updates addressed 48 vulnerabilities, the zero-day flaw CVE-2024-53104 which is actively exploited in attacks…
-
Chinese Hackers Attacking Linux Devices With New SSH Backdoor
A sophisticated cyber espionage campaign attributed to the Chinese hacking group DaggerFly has been identified, targeting Linux systems through an advanced Secure Shell (SSH) backdoor known as ELF/Sshdinjector.A!tr. This malware, part of a broader attack framework, compromises Linux-based network appliances and Internet-of-Things (IoT) devices, enabling data exfiltration and prolonged persistence within compromised environments. Discovered in…
-
New trojan hijacks Linux and IoT devices
There’s a new trojan on the block, one that specifically targets network appliances and internet of things (IoT) devices running the open-source Linux operating system.FortiGuard Labs has identified a new malware kit, dubbed “ELF/Sshdinjector.A!tr”, that has the ability to infect and remotely control systems, establish root privilege, maintain malware presence, exfiltrate data such as user…
-
Android Security Update Fixes Linux Kernel RCE Flaw Allow Read/Write Access
On February 3, 2025, Google published its February Android Security Bulletin, which addresses a total of 47 vulnerabilities affecting Android devices. Among these, a critical flaw in the Linux kernel’s USB Video Class (UVC) driver, tracked as CVE-2024-53104, has been identified as a significant security risk. This vulnerability allows attackers to execute remote code (RCE),…
-
DaggerFly-Linked Linux Malware Targets Network Appliances
DaggerFly’s Lunar Peek campaign is using a new malware strain, identified by FortiGuard Labs, to compromise Linux networks First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/daggerfly-linux-malware-network/
-
Vulnerability Patched in Android Possibly Exploited by Forensic Tools
The February 2025 Android patches resolve 46 vulnerabilities, including a Linux kernel bug that has been exploited in the wild. The post Vulnerability Patched in Android Possibly Exploited by Forensic Tools appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/vulnerability-patched-in-android-possibly-exploited-by-forensic-tools/
-
HP Anyware: Linux-Client ermöglicht Rechteausweitung
Tags: linuxIn HPs Anyware-Client für Linux können Angreifer ihre Rechte am System ausweiten. Ein Softwareupdate steht bereit, das den Fehler korrigiert. First seen on heise.de Jump to article: www.heise.de/news/HP-Anyware-Linux-Client-ermoeglicht-Rechteausweitung-10268440.html
-
Linux Kernel 6.14 Officially Released for Testers
Linus Torvalds, the creator of Linux, announced the release of the first release candidate (rc1) for the Linux Kernel 6.14 in an official email on Sunday, February 2, 2025. This marks the end of the merge window for the new kernel and opens the testing phase for this much-anticipated version. The latest kernel release is…
-
Linux 6.14 Released What’s New
The Linux Kernel 6.14-rc1 (release candidate 1) has been officially announced by Linus Torvalds, marking the conclusion of the merge window. Described as notably >>tiny
-
NVIDIA GPU Display Drivers Vulnerability Lets Attackers Access Files Remotely
NVIDIA has issued a critical security update to address multiple vulnerabilities in its GPU Display Driver and vGPU software, affecting both Windows and Linux systems. These vulnerabilities, disclosed in January 2025, pose risks such as denial of service (DoS), data tampering, information disclosure, and even code execution. Users are strongly advised to update their drivers…
-
Parrot 6.3 Release, What’s New
The cybersecurity realm received an exciting update this week with the release ofParrot 6.3, the latest version of the Parrot Security operating system. As one of the most trusted Linux distributions tailored for ethical hackers, penetration testers, and security researchers, Parrot OS continues to set the benchmark for flexibility, performance, and innovation. So, what’s new…
-
Lynx Ransomware Architecture to Attack Windows, Linux, ESXi Uncovered
Tags: attack, cyber, cybercrime, cybersecurity, encryption, extortion, linux, organized, ransomware, service, tool, windowsThe emergence of the Lynx Ransomware-as-a-Service (RaaS) platform has drawn significant attention in cybersecurity circles, owing to its advanced technical capabilities, structured affiliate workflow, and expansive ransomware arsenal. Lynx has proven to be a highly organized and efficient cybercriminal operation, offering its affiliates a user-friendly interface, robust encryption capabilities, and extortion tools that underline its…
-
Meta blocked Distrowatch links on Facebook while running Linux servers
Tags: linuxPopular community site became unmentionable the irony is thick enough to compile First seen on theregister.com Jump to article: www.theregister.com/2025/01/28/facebook_blocks_distrowatch/
-
Hackers Attacking Windows, macOS, and Linux systems With SparkRAT
Researchers have uncovered new developments in SparkRAT operations, shedding light on its persistent use in malicious campaigns targeting macOS users and government organizations. The findings, detailed in a recent report, underscore the evolving tactics of threat actors leveraging SparkRAT’s modular framework and cross-platform capabilities across Windows, macOS, and Linux. SparkRAT’s Communication Originally released on GitHub…
-
New SCAVY Framework to Detect Memory Corruption Privilege Escalation in Linux Kernel
A breakthrough framework namedSCAVYhas been introduced to proactively detect memory corruption targets that could potentially lead to privilege escalation in the Linux kernel. Presented at the prestigious USENIX Security Symposium in August 2024, the framework aims to address long-standing gaps in understanding how memory corruption can be exploited to compromise system integrity. SCAVY’s developers have…
-
Cisco patches antivirus decommissioning bug as exploit code surfaces
Cisco has patched a denial-of-service (DoS) vulnerability affecting its open-source antivirus software toolkit, ClamAV, which already has a proof-of-concept (PoC) exploit code available to the public.Identified as CVE-2025-20128, the vulnerability stems from a heap-based buffer overflow in the Object Linking and Embedding 2 (OLE2) decryption routine, enabling unauthenticated remote attackers to cause a DoS condition…
-
Fake Homebrew site leverages Google ads to target macOS, Linux devices
First seen on scworld.com Jump to article: www.scworld.com/news/fake-homebrew-site-leverages-google-ads-to-target-macos-linux-devices
-
KI-Bots legen Linux-News-Seite und weitere lahm
Seit Jahresbeginn sorgen KI-Bots offenbar dafür, dass Webseiten wie LWN.net öfter in die Knie gehen. Es soll ein größeres Problem sein. First seen on heise.de Jump to article: www.heise.de/news/KI-Bots-legen-Linux-News-Seite-und-weitere-lahm-10251997.html
-
Fake Homebrew Google ads target Mac users with malware
Hackers are once again abusing Google ads to spread malware, using a fake Homebrew website to infect Macs and Linux devices with an infostealer that steals credentials, browser data, and cryptocurrency wallets. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/fake-homebrew-google-ads-target-mac-users-with-malware/
-
Critical SUSE Linux Distro Injection Vulnerability Allow Attackers Exploits “go-git” Library
A significant security vulnerability, designated CVE-2025-21613, has been discovered in the go-git library, used for Git version control in pure Go applications. This issue affects all versions before 5.13.0 and is characterized by an argument injection vulnerability, enabling potential attackers to modify git-upload-pack flags when utilizing the file transport protocol. This protocol is particularly vulnerable…
-
Yubico Warns of 2FA Security Flaw in pam-u2f for Linux and macOS Users
Tags: 2fa, advisory, authentication, cve, fido, flaw, linux, macOS, mfa, open-source, risk, software, threat, vulnerabilityYubico has released a security advisory, YSA-2025-01, which highlighted a vulnerability within the software module that supports two-factor authentication (2FA) for Linux and macOS platforms. This issue, tracked as CVE-2025-23013, allows for a partial 2FA bypass protections when using YubiKeys or other FIDO-compatible authenticators. The vulnerability poses a high-risk security threat and could potentially compromise…
-
Pumakit Sophisticated Linux Rootkit That Persist Even After Reboots
Pumakit is a sophisticated rootkit that leverages system call interception to manipulate file and network activity. It ensures persistence through kernel-level embedding that allows for continued operation after reboots. By tampering with logs and employing anti-detection techniques that include disabling security tools, it hinders forensic investigations and maintains stealthy operations. This rootkit facilitates data exfiltration…
-
Rhino Linux 2025.1 Released Update Now!
Rhino Linux is roaring into the new year with the exciting release of Rhino Linux 2025.1! After a brief pause to refine the system, this latest snapshot introduces an array of updates and improvements, solidifying Rhino Linux as a reliable and forward-thinking distribution. Here’s everything you need to know about this release and other thrilling announcements…
-
Intel, AMD engineers rush to save Linux 6.13 after dodgy Microsoft code change
‘Let’s not do this again please’… days before release date First seen on theregister.com Jump to article: www.theregister.com/2025/01/14/microsoft_linux_change_pulled/