Tag: linux
-
PwnKit: Local Privilege Escalation (LPE) in Polkit’s pkexec (CVE-2021-4034)
Summary On January 25, researchers at Qualys disclosed a high severity local privilege escalation (LPE) vulnerability affecting Linux’s policy kits (P… First seen on research.kudelskisecurity.com Jump to article: research.kudelskisecurity.com/2022/01/26/pwnkit-local-privilege-escalation-lpe-in-polkits-pkexec-cve-2021-4034/
-
Dirty Pipe Linux Kernel Local Privilege Escalation (LPE) Vulnerability (CVE-2022-0847)
Summary CVE-2022-0847 was disclosed on March 7th and since has been named Dirty Pipe. This linuxkernel vulnerability is caused by improperly handling … First seen on research.kudelskisecurity.com Jump to article: research.kudelskisecurity.com/2022/04/04/dirty-pipe-linux-kernel-local-privilege-escalation-lpe-vulnerability-cve-2022-0847/
-
Introducing Shufflecake: plausible deniability for multiple hidden filesystems on Linux
Today we are excited to release Shufflecake, a tool aimed at helping people whose freedom of expression is threatened by repressive authorities or dan… First seen on research.kudelskisecurity.com Jump to article: research.kudelskisecurity.com/2022/11/10/introducing-shufflecake-plausible-deniability-for-multiple-hidden-filesystems-on-linux/
-
Linux Kernel ksmbd Remote Code Execution Vulnerability
Note: This bulletin was written by Eric Dodge of the Kudelski Security Threat Detection & Research Team Summary The Zero Day Initiative (ZDI) rece… First seen on research.kudelskisecurity.com Jump to article: research.kudelskisecurity.com/2022/12/22/bulletin-linux-kernel-ksmbd-remote-code-execution-vulnerability/
-
Kimsuky APT Group Deploys New Linux Backdoor: Gomir
First seen on thefinalhop.com Jump to article: www.thefinalhop.com/kimsuky-apt-group-deploys-new-linux-backdoor-gomir/
-
Bootkitty: Erstes Linux UEFI Boot-Kit
ESET Research ist auf das das erste Linux UEFI Boot-Kit gestoßen und hat dieses Bootkitty genannt. Dieses Linux UEFI Boot-Kit wurde Anfang November 2024 auf Virustotal hochgeladen und ist den Sicherheitsforschern dadurch aufgefallen. Für Windows sind UEFI Boot-Kits, die sich … First seen on borncity.com Jump to article: www.borncity.com/blog/2024/12/01/bootkitty-erstes-linux-uefi-boot-kit/
-
New Backdoor Linked to Earth Lusca Threat Group
Researchers have uncovered a new backdoor called KTLVdoor, which is written in the Go language, has versions for targeting Windows and Linux and is li… First seen on duo.com Jump to article: duo.com/decipher/new-backdoor-linked-to-chinese-threat-group
-
CVE-2024-3094: Malicious Code in XZ Utils Enables RCE on Linux Systems
A recent analysis has revealed that the malicious code embedded in the widely-used open-source library XZ Utils (present in multiple Linux distros) ca… First seen on sensorstechforum.com Jump to article: sensorstechforum.com/cve-2024-3094-xz-utils-linux/
-
CVE-2024-28085: Linux Flaw Could Leak Passwords
A recently identified vulnerability affecting the >>wall
-
New Native Spectre v2 Exploit Raises Concerns for Linux Kernel Security
Cybersecurity researchers from the Systems and Network Security Group (VUSec) at Vrije Universiteit Amsterdam have unveiled what they describe as the … First seen on sensorstechforum.com Jump to article: sensorstechforum.com/native-spectre-v2-exploit-linux-kernel/
-
Atlassian Vulnerability Used to Deploy Linux Variant of Cerber Ransomware
Threat actors are exploiting critical vulnerabilities in Atlassian servers to deploy a Linux variant of Cerber ransomware. This exploitation, centered… First seen on sensorstechforum.com Jump to article: sensorstechforum.com/atlassian-vulnerability-cerber-ransomware/
-
Both KDE and GNOME to offer official distros
Tags: linuxLeading Linux desktops boldly address the “not enough distros” non-problem First seen on theregister.com Jump to article: www.theregister.com/2024/11/29/kde_and_gnome_distros/
-
Code found online exploits LogoFAIL to install Bootkitty Linux backdoor
Unearthed sample likely works against Linux devices from Acer, HP, Fujitsu, and Lenovo. First seen on arstechnica.com Jump to article: arstechnica.com/security/2024/11/code-found-online-exploits-logofail-to-install-bootkitty-linux-backdoor/
-
Just Like Windows: Linux Targeted by First-Ever UEFI Bootkit
Linux-Targeting Bootkitty Appears More Proof-of-Concept Than Threat, Researchers Say. Cybersecurity researchers have discovered the first-ever UEFI bootkit designed to target Linux systems and subvert their boot process for malicious purposes. The Bootkitty malware, first uploaded to VirusTotal this month, appears to be more proof of concept than full-fledged threat, they said. First seen on govinfosecurity.com…
-
Godot Engine Exploited to Spread Malware on Windows, macOS, Linux
Check Point Research has discovered cybercriminals exploiting the popular Godot Game Engine to deliver malicious software. Discover the techniques used by attackers and how to protect yourself from these threats. First seen on hackread.com Jump to article: hackread.com/godot-engine-malware-on-windows-macos-linux/
-
Wie man Videospiel-Engines für Hacking missbraucht
Check Point Software Technologies kam einer neuen Hacker-Masche auf die Spur. Mithilfe der Gaming-Engine können Cyberkriminelle verschiedene Betriebssysteme von vernetzten Geräten attackieren, darunter Windows, MacOS, Linux, Android und iOS. Verbreitet wird der schädliche Code von dem Malware-Netzwerk , die Check Point vor einigen Monaten untersucht hatte, über die Open-Source-Plattform Github. In […] First seen on…
-
Popular game script spoofed to infect thousands of game developers
A malware loader, now named GodLoader, has been observed to be using Godot, a free and open-source game engine, as its runtime to execute malicious codes and has dropped known malware on at least 17,000 machines.Unaware users of the engine, which helps create 2D and 3D games and deploy them across various platforms including Windows,…
-
Anonymisierendes Linux: Tails 6.10 korrigiert Desktop-Startfehler
Tags: linuxDie Tails-Entwickler haben in Version 6.10 kleinere Fehler behoben. Sie aktualisieren zudem den zentralen anonymisierenden Browser. First seen on heise.de Jump to article: www.heise.de/news/Anonymisierendes-Linux-Tails-6-10-korrigert-Desktop-Startfehler-10182099.html
-
Anonymisierendes Linux: Tails 6.10 korrigert Desktop-Startfehler
Tags: linuxDie Tails-Entwickler haben in Version 6.10 kleinere Fehler behoben. Sie aktualisieren zudem den zentralen anonymisierenden Browser. First seen on heise.de Jump to article: www.heise.de/news/Anonymisierendes-Linux-Tails-6-10-korrigert-Desktop-Startfehler-10182099.html
-
Found on VirusTotal: The world’s first UEFI bootkit for Linux
“Bootkitty” is likely a proof-of-concept, but may portend working UEFI malware for Linux. First seen on arstechnica.com Jump to article: arstechnica.com/security/2024/11/found-in-the-wild-the-worlds-first-unkillable-uefi-bootkit-for-linux/
-
>>Bootkitty<< A First Ever UEFI Bootkit Attack Linux Systems
Cybersecurity researchers have uncovered the first-ever UEFI bootkit designed to target Linux systems. This discovery, named ‘Bootkitty’, marks a new chapter in UEFI threats, which have predominantly targeted Windows systems until now. The UEFI (Unified Extensible Firmware Interface) threat landscape has seen considerable evolution over the past decade. Evolution of UEFI Threats Initially, in 2012,…
-
Bootkitty is the first UEFI Bootkit designed for Linux systems
ESET discovered the first Unified Extensible Firmware Interface (UEFI) bootkit specifically designed for Linux systems, named Bootkitty. Cybersecurity researchers from ESET discovered the first UEFI bootkit designed to target Linux systems, called by its authors Bootkitty. The bootkit allows attackers to disable the kernel’s signature verification feature and to preload two as yet unknown ELF…
-
Found in the wild: The world’s first unkillable UEFI bootkit for Linux
“Bootkitty” is likely a proof-of-concept, but may portend working UEFI malware for Linux. First seen on arstechnica.com Jump to article: arstechnica.com/security/2024/11/found-in-the-wild-the-worlds-first-unkillable-uefi-bootkit-for-linux/
-
Researchers discover first UEFI bootkit malware for Linux
The first UEFI bootkit specifically targeting Linux systems has been discovered, marking a shift in stealthy and hard-to-remove bootkit threats that previously focused on Windows. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/researchers-discover-bootkitty-first-uefi-bootkit-malware-for-linux/
-
ESET Flags Prototype UEFI Bootkit Targeting Linux
ESET warns of a new reality: “UEFI bootkits are no longer confined to Windows systems alone.” The post ESET Flags Prototype UEFI Bootkit Targeting Linux appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/eset-flags-prototype-uefi-bootkit-targeting-linux/
-
ESET researchers analyze first UEFI bootkit for Linux systems
Tags: linuxESET Research has discovered the first UEFI bootkit designed for Linux systems, named Bootkitty by its creators. Researchers believe this bootkit is likely an initial proof of … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/11/27/linux-uefi-bootkit-bootkitty/
-
New Bootkit “Bootkitty” Targets Linux Systems via UEFI
Bootkitty, the first Linux-targeting UEFI bootkit, bypassed kernel security in a proof-of-concept attack First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/bootkit-bootkitty-targets-linux/
-
First-ever UEFI bootkit for Linux in the works, experts say
Tags: linuxBootkitty doesn’t bite”¦ yet First seen on theregister.com Jump to article: www.theregister.com/2024/11/27/firstever_uefi_bootkit_for_linux/
-
Researchers Discover “Bootkitty” First UEFI Bootkit Targeting Linux Kernels
Cybersecurity researchers have shed light on what has been described as the first Unified Extensible Firmware Interface (UEFI) bootkit designed for Linux systems.Dubbed Bootkitty by its creators who go by the name BlackCat, the bootkit is assessed to be a proof-of-concept (PoC) and there is no evidence that it has been put to use in…
-
QScanner: Linux command-line utility for scanning container images, conducting SCA
QScanner is a Linux command-line utility tailored for scanning container images and performing Software Composition Analysis (SCA). It is compatible with diverse container … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/11/27/qscanner-linux-scanning-container-images/