Tag: linux
-
Novel Linux backdoor used in Kimsuky attacks
First seen on scmagazine.com Jump to article: www.scmagazine.com/brief/novel-linux-backdoor-used-in-kimsuky-attacks
-
Malware Spotlight: Linodas aka DinodasRAT for Linux
ntroduction In recent months, Check Point Research (CPR) has been closely monitoring the activity of a Chinese-nexus cyber espionage threat actor who … First seen on research.checkpoint.com Jump to article: research.checkpoint.com/2024/29676/
-
North Korea-linked Kimsuky used a new Linux backdoor in recent attacks
Symantec warns of a new Linux backdoor used by the North Korea-linked Kimsuky APT in a recent campaign against organizations in South Korea. Symantec… First seen on securityaffairs.com Jump to article: securityaffairs.com/163364/apt/kimsuky-new-linux-backdoor.html
-
How to Record SSH Sessions and Monitor User Activity in Linux with Ekran System [Hands-on Guide]
Monitoring user activity on your critical endpoints is a vital part of an effective cybersecurity strategy. Organizations need to monitor both remote … First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/05/how-to-record-ssh-sessions-and-monitor-user-activity-in-linux-with-ekran-system-hands-on-guide/
-
Latest Ubuntu Security Updates: Fixing Linux Kernel Vulnerabilities
Several vulnerabilities have been discovered in the Linux kernel that could lead to privilege escalation, denial of service, or information leaks. The… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/05/latest-ubuntu-security-updates-fixing-linux-kernel-vulnerabilities/
-
Angreifer können Schwachstelle im Linux-Kernel ausnutzen – Gefährliche Schwachstelle im Linux-Kernel
First seen on security-insider.de Jump to article: www.security-insider.de/linux-kernel-sicherheitsluecke-cve-2024-26925-geschlossen-a-a337af3a7bb7f754a735ffcbf2fac991/
-
Kinsing Malware Attacking Apache Tomcat Servers To Deploy Cryptominers
Kinsing malware, known for exploiting vulnerabilities on Linux cloud servers to deploy backdoors and cryptominers, has recently expanded its target to… First seen on gbhackers.com Jump to article: gbhackers.com/kinsing-malware-apache-tomcat-servers/
-
New Linux Backdoor Attacking Linux Users Via Installation Packages
Linux is widely used in numerous servers, cloud infrastructure, and Internet of Things devices, which makes it an attractive target for gaining unauth… First seen on gbhackers.com Jump to article: gbhackers.com/linux-backdoor-attack-installation-packages/
-
Ebury botnet compromises 400,000+ Linux servers
ESET researchers released its deep-dive investigation into one of the most advanced server-side malware campaigns. It is still growing and has seen hu… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/05/16/ebury-botnet/
-
Report: 400K Linux servers affected by Ebury malware
First seen on scmagazine.com Jump to article: www.scmagazine.com/brief/report-400k-linux-servers-affected-by-ebury-malware
-
Kimsuky hackers deploy new Linux backdoor in attacks on South Korea
The North Korean hacker group Kimsuki has been using a new Linux malware called Gomir that is a version of the GoBear backdoor delivered via trojanize… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/kimsuky-hackers-deploy-new-linux-backdoor-in-attacks-on-south-korea/
-
Breach Roundup: Kimsuky Serves Linux Trojan
Also: Turla Targets European Missions and Google Patches Chrome Zero-Days. This week, hackers used a Linus backdoor and a Microsoft client management … First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/breach-roundup-kimsuky-serves-linux-trojan-a-25246
-
15-Year-Old Ebury Botnet Compromised 400,000 Linux Servers
The operators behind the Ebury server-side malware botnet have been doing business since at least 2009 and, according to the threat researchers who ha… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/05/15-year-old-ebury-botnet-compromised-400000-linux-servers/
-
400,000 Linux Servers Hit by Ebury Botnet
The Ebury Linux botnet has ensnared over 400,000 Linux systems in 15 years, with roughly 100,000 still infected. The post y Linux botnet has ensnared … First seen on securityweek.com Jump to article: www.securityweek.com/400000-linux-servers-hit-by-ebury-botnet/
-
Ebury botnet malware infected 400,000 Linux servers since 2009
First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/ebury-botnet-malware-infected-400-000-linux-servers-since-2009/
-
Understanding Linux Cryptography: Security in the Open Source World
Encryption plays a vital role by scrambling information, making it unreadable to anyone without the decryption key. Linux provides robust protocols li… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/05/understanding-linux-cryptography-security-in-the-open-source-world/
-
Pktstat: Open-source ethernet interface traffic monitor
Pktstat is an open-source tool that is a straightforward alternative to ncurses-based Pktstat. On Linux, it utilizes AF_PACKET, while on other platfor… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/05/08/pktstat-open-source-ethernet-interface-traffic-monitor/
-
Securing Virtual Machines in QEMU on Linux
A neglected security update means unaddressed vulnerabilities, which is a prime target for attackers. A compromised VM image can be a security nightma… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/05/securing-virtual-machines-in-qemu-on-linux/
-
Systemd-Alternative zu sudo soll Linux sicherer machen
Tags: linuxrun0 lässt reguläre Benutzer Programme mit root-Rechten ausführen. Es ähnelt sudo, nutzt aber andere Mechanismen zur Privilegienerhöhung und soll sich… First seen on heise.de Jump to article: www.heise.de/news/Systemd-Alternative-zu-sudo-soll-Linux-sicherer-machen-9705458.html
-
New Linux Kernel Vulnerabilities Addressed in Ubuntu
The Ubuntu security team has addressed several security vulnerabilities within the Linux kernel for both Ubuntu 23.10 and Ubuntu 22.04 LTS releases. T… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/05/new-linux-kernel-vulnerabilities-addressed-in-ubuntu/
-
Hardening Embedded Linux IoT Devices: A Comprehensive Guide
Embedded systems often operate on specialized hardware with limited processing power, memory, and storage. Many embedded Linux IoT devices collect a… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/05/hardening-embedded-linux-iot-devices-a-comprehensive-guide/
-
Winrar: Gefälschte Ausgaben unter Linux möglich und MotW-Probleme in Windows
First seen on heise.de Jump to article: www.heise.de/news/Winrar-MotW-Probleme-in-Windows-und-eine-Linux-Luecke-korrigiert-9701474.html
-
CrushFTP auf v11.1.0 updaten, Schwachstelle (CVE-2024-4040) unter Beschuss
CrushFTP ist ein proprietärer Dateiübertragungsserver mit mehreren Protokollen und Plattformen (macOS, Linux, Windows), der als Shareware mit einem ge… First seen on borncity.com Jump to article: www.borncity.com/blog/2024/04/23/crushftp-auf-v11-1-0-updaten-schwachstelle-cve-2024-4040-unter-beschuss/
-
Akira Ransomware Gang Extorts $42 Million; Now Targets Linux Servers
Threat actors behind the Akira ransomware group have extorted approximately $42 million in illicit proceeds after breaching the networks of more than … First seen on thehackernews.com Jump to article: thehackernews.com/2024/04/akira-ransomware-gang-extorts-42.html
-
XZ backdoor discovery reveals Linux supply chain attack
A maintainer for XZ, a popular open source compression library for Linux distributions, compromised the open source project over the course of two yea… First seen on techtarget.com Jump to article: www.techtarget.com/searchsecurity/news/366577602/XZ-backdoor-discovery-reveals-Linux-supply-chain-attack
-
Open source alert over intentionally placed backdoor
A backdoor in the open source XZ Utils data compression library could have led to widespread compromise across the Linux ecosystem – and the community… First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366577513/Open-source-alert-over-intentionally-placed-backdoor
-
Debian 12: Redefining Stability and Innovation in Open-Source Operating Systems
Debian holds a distinguished position. Recognized as one of the oldest and most trusted distributions within the Linux ecosystem, Debian continues to … First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/04/debian-12-redefining-stability-and-innovation-in-open-source-operating-systems/
-
Critical Atlassian Flaw Exploited to Deploy Linux Variant of Cerber Ransomware
Threat actors are exploiting unpatched Atlassian servers to deploy a Linux variant of Cerber (aka C3RB3R) ransomware.The attacks leverage CVE-2023-225… First seen on thehackernews.com Jump to article: thehackernews.com/2024/04/critical-atlassian-flaw-exploited-to.html
-
Anonymisierendes Linux: Tails 6.2 legt Schwerpunkt auf Übersetzungen
Tags: linuxFirst seen on heise.de Jump to article: www.heise.de/news/Anonymisierendes-Linux-Tails-6-2-legt-Schwerpunkt-auf-Uebersetzungen-9696516.html
-
Veeam unterstützt OracleVirtualization-Manager
Veeam Software kündigt die Veeam-Data-Platform-Unterstützung für hostbasierte Backups von VMs an, die auf dem Oracle-Linux-KVM-Hypervisor ausgeführt w… First seen on netzpalaver.de Jump to article: netzpalaver.de/2024/04/18/veeam-unterstuetzt-oracle-linux-virtualization-manager/