Tag: linux
-
USENIX Security ’23 Pspray: Timing Side-Channel Based Linux Kernel Heap Exploitation Technique
by
in SecurityNewsAuthors/Presenters:Yoochan Lee and Jinhan Kwak, Junesoo Kang, Yuseok Jeon, Byoungyoung Lee Many thanks to USENIX for publishing their outstanding USEN… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/08/usenix-security-23-pspray-timing-side-channel-based-linux-kernel-heap-exploitation-technique/
-
Linux Kernal Vulnerability Let Attackers Bypass CPU Gain Read/Write Access
by
in SecurityNewsResearchers have uncovered a critical vulnerability within the Linux kernel’sdmam_free_coherent()function. This flaw, identified as CVE-2024-43856, st… First seen on gbhackers.com Jump to article: gbhackers.com/linux-kernal-vulnerability/
-
How to Patch your Linux Kernel before it gets exploited?
by
in SecurityNewsLinux Kernel server patch management is essential for ensuring the security, stability, and performance of your server infrastructure. This comprehens… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/08/how-to-patch-your-linux-kernel-before-it-gets-exploited/
-
What You Missed About the CrowdStrike Outage:: The Next Strike Might Be Linux Due to eBPF
by
in SecurityNewsThe Other Crowdstrike Outage On July 19, 2024, a flawed update in CrowdStrike Falcon’s channel file 291 led to a logic error that caused Windows syste… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/08/what-you-missed-about-the-crowdstrike-outage-the-next-strike-might-be-linux-due-to-ebpf/
-
Windows-Update legt erneut Linuxe lahm
by
in SecurityNewsMit den Windows-Updates vom 13. August booten verschiedene Linux-Installationsmedien nicht mehr. Das liegt an veralteten Bootloadern, die nun gesperrt… First seen on heise.de Jump to article: www.heise.de/news/Windows-Update-legt-erneut-Linuxe-lahm-9838170.html
-
0.0.0.0 Day: 18-Year-Old Browser Vulnerability Impacts MacOS and Linux Devices
by
in SecurityNewsCybersecurity researchers have discovered a new 0.0.0.0 Day impacting all major web browsers that malicious websites could take advantage of to breach… First seen on thehackernews.com Jump to article: thehackernews.com/2024/08/0000-day-18-year-old-browser.html
-
0.0.0.0 Day: 18-Year-Old Browser Flaw Affects Linux and macOS
by
in SecurityNewsOligo Security’s research team recently uncovered a critical vulnerability dubbed the 0.0.0.0 Day affecting Chromium, Firefox, and Safari browsers on … First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/08/0-0-0-0-day-18-year-old-browser-flaw-affects-linux-and-macos/
-
Mitigating Risk in Linux: Strategies for IT Compliance
by
in SecurityNewsImplementing robust Linux security measures is fundamental to achieving IT compliance. Adherence to compliance frameworks and standards is essential f… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/08/mitigating-risk-in-linux-strategies-for-it-compliance/
-
New Linux Kernel Exploit Technique ‘SLUBStick’ Discovered by Researchers
by
in SecurityNewsCybersecurity researchers have shed light on a novel Linux kernel exploitation technique dubbed SLUBStick that could be exploited to elevate a limited… First seen on thehackernews.com Jump to article: thehackernews.com/2024/08/new-linux-kernel-exploit-technique.html
-
Essential Linux Security Tools: A Comprehensive Overview for Security Professionals
by
in SecurityNewsCombining multiple Linux security tools to protect against various threats is crucial for a robust security posture. Effective use of security tools r… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/08/essential-linux-security-tools-a-comprehensive-overview-for-security-professionals/
-
Linux Malware liefert Beweis: Lazarus steckt hinter der 3CX Supply Chain Attacke
by
in SecurityNewseiten mit neu entdeckter Linux-Malware, die bei der Operation DreamJob verwendet wurde, bestätigen die Theorie, dass die berüchtigte, mit Nordkorea ve… First seen on welivesecurity.com Jump to article: www.welivesecurity.com/deutsch/2023/04/20/linux-malware-liefert-beweis-lazarus-steckt-hinter-der-3cx-supply-chain-attacke/
-
A Deep Dive Into CVE-2023-2163: How Google Found And Fixed An eBPF Linux Kernel Vulnerability
by
in SecurityNewsFirst seen on packetstormsecurity.com Jump to article: packetstormsecurity.com/news/view/36196/A-Deep-Dive-Into-CVE-2023-2163-How-Google-Found-And-Fixed-An-eBPF-Linux-Kernel-Vulnerability.html
-
TuxCare Offers Four Years of Precision-Engineered Security Updates for Oracle Linux 7
by
in SecurityNewsPALO ALTO, Calif. August 13, 2024 TuxCare, a global innovator in cybersecurity for Linux, today announced the launch of its TuxCare Oracle Linux 7 Ext… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/08/tuxcare-offers-four-years-of-precision-engineered-security-updates-for-oracle-linux-7/
-
North Korea-Linked Malware Targets Developers on Windows, Linux, and macOS
by
in SecurityNewsThe threat actors behind an ongoing malware campaign targeting software developers have demonstrated new malware and tactics, expanding their focus to… First seen on thehackernews.com Jump to article: thehackernews.com/2024/07/north-korea-linked-malware-targets.html
-
Leistungsstarkes Überwachungstool für Linux Systeme mit Auditd überwachen
by
in SecurityNews
Tags: linuxFirst seen on security-insider.de Jump to article: www.security-insider.de/auditd-linux-ueberwachungs-tool-a-78a6db894201e0e9794c7a3a81bf7388/
-
Linux kernel exploitation SLUBStick can read and write memory arbitrarily
by
in SecurityNewsFirst seen on scmagazine.com Jump to article: www.scmagazine.com/news/linux-kernel-exploitation-slubstick-can-read-and-write-memory-arbitrarily
-
Linux kernel impacted by new SLUBStick cross-cache attack
by
in SecurityNewsA novel Linux Kernel cross-cache attack named SLUBStick has a 99% success in converting a limited heap vulnerability into an arbitrary memory read-and… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/linux-kernel-impacted-by-new-slubstick-cross-cache-attack/
-
New SLUBStick Attack Makes Linux Kernel Vulnerabilities More Dangerous
by
in SecurityNewsA new Linux kernel exploitation technique named SLUBStick makes heap vulnerabilities more dangerous. The post New SLUBStick Attack Makes Linux Kernel… First seen on securityweek.com Jump to article: www.securityweek.com/new-slubstick-attack-makes-linux-kernel-vulnerabilities-more-dangerous/
-
Novel SLUBStick Linux Exploit Gives Attackers Full System Control
by
in SecurityNewsA novel Linux kernel exploit technique called SLUBStick has proven to be 99% successful running the kind of attacks that in the past had a success rat… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/08/novel-slubstick-linux-exploit-gives-attackers-full-system-control/
-
TgRAT Malware Attacking Linux Servers with New Variant
by
in SecurityNewsA new variant of the TgRAT malware, initially discovered in 2022 targeting Windows systems, has been observed attacking Linux servers. This evolution … First seen on gbhackers.com Jump to article: gbhackers.com/tgrat-malware-attacking-linux-servers/
-
Compared to other distros, Vanilla OS 2 ‘Orchid’ is rewriting how Linux works
by
in SecurityNews
Tags: linuxFirst seen on theregister.com Jump to article: www.theregister.com/2024/07/31/vanilla_os_friendly_radical/
-
Securing DevOps Workflows in Linux: Linux Security Automation and Orchestration Tools
by
in SecurityNewsIntegrating security into DevOps workflows has become a critical task, especially in Linux environments. As organizations increasingly rely on DevOps … First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/08/securing-devops-workflows-in-linux-linux-security-automation-and-orchestration-tools/
-
Updated TgRat trojan sets sights on Linux servers
by
in SecurityNews
Tags: linuxFirst seen on scmagazine.com Jump to article: www.scmagazine.com/brief/updated-tgrat-trojan-sets-sights-on-linux-servers
-
Telegram-Controlled TgRat Trojan Targets Linux Servers
by
in SecurityNews
Tags: linuxFirst seen on hackread.com Jump to article: hackread.com/telegram-controlled-tgrat-trojan-targets-linux-servers/
-
An Introduction to Cloud Computing for Linux Users
by
in SecurityNewsLinux, the open-source operating system renowned for its stability, security, and customizability, is a major force in cloud computing. Many cloud ser… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/07/an-introduction-to-cloud-computing-for-linux-users/
-
Ghostscript Vulnerability Actively Exploited in Attacks
by
in SecurityNewsA significant remote code execution (RCE) vulnerability was identified in the Ghostscript library, a widely used tool on Linux systems. This vulnerabi… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/07/ghostscript-vulnerability-actively-exploited-in-attacks/
-
AcidPour Malware Attacking Linux Data Storage Devices To Wipe Out Data
by
in SecurityNewsIn March 2024, a new variant of the AcidRain wiper malware dubbed AcidPour was noticed. It targets Linux data storage devices and permanently erases d… First seen on gbhackers.com Jump to article: gbhackers.com/acidpour-malware-linux-data-wipe/
-
Linux Mint 22 ‘Wilma’ still the Bedrock choice for moving off Windows
by
in SecurityNewsFirst seen on theregister.com Jump to article: www.theregister.com/2024/07/29/linus_mint_22_wilma/
-
New Linux Variant of Play Ransomware Targeting VMWare ESXi Systems
by
in SecurityNewsCybersecurity researchers have discovered a new Linux variant of a ransomware strain known as Play (aka Balloonfly and PlayCrypt) that’s designed to t… First seen on thehackernews.com Jump to article: thehackernews.com/2024/07/new-linux-variant-of-play-ransomware.html
-
Chinese Espionage Group Upgrades Malware Arsenal to Target All Major OS
Symantec said Chinese espionage group Daggerfly has updated its malware toolkit as it looks to target Windows, Linux, macOS and Android operating syst… First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/chinese-group-malware-target-os/