Tag: linux
-
In Other News: Nvidia Fixes Critical Flaw, Chinese Linux Backdoor, New Details in WhatsApp-NSO Lawsuit
by
in SecurityNewsNoteworthy stories that might have slipped under the radar: Nvidia fixes vulnerability with rare ‘critical’ severity, Chinese APT’s first Linux backdoor, new details emerge from the WhatsApp-NSO lawsuit. The post In Other News: Nvidia Fixes Critical Flaw, Chinese Linux Backdoor, New Details in WhatsApp-NSO Lawsuit appeared first on SecurityWeek. First seen on securityweek.com Jump to…
-
Chinese APT Gelsemium Deploys ‘Wolfsbane’ Linux Variant
In a sign of the times, a backdoor malware whose ancestors date back to 2005 has morphed to target Linux systems. First seen on darkreading.com Jump to article: www.darkreading.com/threat-intelligence/chinese-apt-gelsemium-wolfsbane-linux-variant
-
Chinese hackers target Linux with new WolfsBane malware
A new Linux backdoor called ‘WolfsBane’ has been discovered, believed to be a port of Windows malware used by the Chinese ‘Gelsemium’ hacking group. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/chinese-gelsemium-hackers-use-new-wolfsbane-linux-malware/
-
‘Alarming’ security bugs lay low in Linux’s needrestart server utility for 10 years
by
in SecurityNewsUpdate now: Qualys says flaws give root to local users, are ‘easily exploitable’ First seen on theregister.com Jump to article: www.theregister.com/2024/11/21/qualys_ubuntu_server_vulnerabilities/
-
Chinese APT Gelsemium Targets Linux Systems with New WolfsBane Backdoor
by
in SecurityNewsThe China-aligned advanced persistent threat (APT) actor known as Gelsemium has been observed using a new Linux backdoor dubbed WolfsBane as part of cyber attacks likely targeting East and Southeast Asia.That’s according to findings from cybersecurity firm ESET based on multiple Linux samples uploaded to the VirusTotal platform from Taiwan, the Philippines, and Singapore in…
-
Linux Malware WolfsBane and FireWood Linked to Gelsemium APT
New Linux malware WolfsBane and FireWood have been linked to Gelsemium APT, a cyber-espionage group targeting critical systems First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/linux-malware-wolfsbane-firewood/
-
Seit 10 Jahren vorhanden: Fünf Lücken verleihen Root-Rechte unter Linux
by
in SecurityNewsIn einem Tool namens Needrestart klaffen gleich mehrere Root-Lücken, die zahlreiche Linux-Systeme gefährden – und das schon seit April 2014. First seen on golem.de Jump to article: www.golem.de/news/seit-10-jahren-vorhanden-fuenf-linux-luecken-verleihen-angreifern-root-rechte-2411-191003.html
-
Researchers unearth two previously unknown Linux backdoors
by
in SecurityNewsESET researchers have identified multiple samples of two previously unknown Linux backdoors: WolfsBane and FireWood. The goal of the backdoors and tools discovered is … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/11/21/linux-backdoors-wolfsbane-firewood/
-
Helldown Ransomware Attacking VMware ESXi And Linux Servers
by
in SecurityNewsHelldown, a new ransomware group, actively exploits vulnerabilities to breach networks, as since August 2024, they have compromised 28 victims, leaking their data on a dedicated website. The ransomware group IS has updated its data leak site, removing three victims, possibly indicating successful ransom payments by continuing its double extortion tactic, stealing and threatening to…
-
Helldown Ransomware Attacking VMware ESX And Linux Servers
by
in SecurityNewsHelldown, a new ransomware group, actively exploits vulnerabilities to breach networks, as since August 2024, they have compromised 28 victims, leaking their data on a dedicated website. The ransomware group IS has updated its data leak site, removing three victims, possibly indicating successful ransom payments by continuing its double extortion tactic, stealing and threatening to…
-
Ubuntu Linux impacted by decade-old ‘needrestart’ flaw that gives root
by
in SecurityNewsFive local privilege escalation (LPE) vulnerabilities have been discovered in the needrestart utility used by Ubuntu Linux, which was introduced over 10 years ago in version 21.04. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/ubuntu-linux-impacted-by-decade-old-needrestart-flaw-that-gives-root/
-
Helldown Ransomware Evolves To Target VMware Systems Via Linux
by
in SecurityNewsFirst seen on packetstormsecurity.com Jump to article: packetstormsecurity.com/news/view/36617/Helldown-Ransomware-Evolves-To-Target-VMware-Systems-Via-Linux.html
-
Oracle Linux 9 Update 5 brings security updates, OpenJDK 17, .NET 9.0
by
in SecurityNewsOracle Linux offers a secure, streamlined platform for deploying and managing applications across on-premises, cloud, and edge environments. Designed for demanding workloads, … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/11/20/oracle-linux-9-update-5/
-
Linux Variant of Helldown Ransomware Targets VMware ESX Servers
by
in SecurityNewsCybersecurity firm Sekoia has discovered a new variant of Helldown ransomware. The article details their tactics and how… First seen on hackread.com Jump to article: hackread.com/helldown-ransomware-linux-variant-vmware-esx-servers/
-
Linux Variant of Helldown Ransomware Targets VMware ESxi Systems
by
in SecurityNewsSince surfacing in August, the likely LockBit variant has claimed more than two dozen victims and appears poised to strike many more. First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/linux-variant-helldown-ransomware-targets-vmware
-
Helldown Ransomware Expands to Target VMware and Linux Systems
by
in SecurityNewsHelldown ransomware has expanded its reach to target Linux and VMware systems, exploiting Zyxel firewall vulnerabilities and exfiltrating data First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/helldown-ransomware-target-vmware/
-
noexec-Bypass macht Linux-Systeme anfällig für Schadcode
by
in SecurityNewsFirst seen on tarnkappe.info Jump to article: tarnkappe.info/artikel/it-sicherheit/noexec-bypass-macht-linux-systeme-anfaellig-fuer-schadcode-302920.html
-
New ‘Helldown’ Ransomware Variant Expands Attacks to VMware and Linux Systems
by
in SecurityNewsCybersecurity researchers have shed light on a Linux variant of a relatively new ransomware strain called Helldown, suggesting that the threat actors are broadening their attack focus.”Helldown deploys Windows ransomware derived from the LockBit 3.0 code,” Sekoia said in a report shared with The Hacker News. “Given the recent development of ransomware targeting ESX, it…
-
AlmaLinux 9.5 released: Security updates, new packages, and more!
by
in SecurityNewsAlmaLinux is a free, open-source, enterprise-grade Linux distribution. Governed and owned by the community, it offers a production-ready platform with binary compatibility to … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/11/19/almalinux-9-5-teal-serval-released/
-
Analyzing JtR’s Tokenizer Attack (Round 1)
by
in SecurityNewsIntroduction / Goals / Scope: This is a follow-up to my previous blog post looking at how to install/run the new John the Ripper Tokenizer attack [Link]. The focus of this post will be on performing a first pass analysis about how the Tokenizer attack actually performs. Before I dive into the tests, I want…
-
Attacker Hides Malicious Activity in Emulated Linux Environment
by
in SecurityNewsFirst seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/attacker-hides-malicious-activity-emulated-linux-environment
-
Chrome 131 Released with the Fix for Multiple Vulnerabilities
by
in SecurityNewsThe Chrome team has officially announced the release of Chrome 131 for Windows, Mac, and Linux. The new version, Chrome 131.0.6778.69 for Linux and 131.0.6778.69/.70 for Windows and Mac is set to roll out to users over the coming days and weeks. This update includes several security fixes, performance improvements, and other enhancements, making Chrome…
-
Cylance Ransomware greift Windows- und Linux-Systeme an
by
in SecurityNewsEine neue Version der Cylance Ransomware attackiert derzeit Windows- und Linux-Systeme. Noch befindet sie sich scheinbar in einem frühen Stadium, hat … First seen on 8com.de Jump to article: www.8com.de/cyber-security-blog/cylance-ransomware-greift-windows-und-linux-systeme-an
-
CRON#TRAP Campaign Attacks Windows Machine With Weaponized Linux Virtual Machine
by
in SecurityNewsWeaponized Linux virtual machines are used for offensive cybersecurity purposes, such as >>penetration testing>exploiting vulnerabilities.
-
Angreifer nutzen emulierte Linux-Umgebung als Backdoor
by
in SecurityNewsFirst seen on heise.de Jump to article: www.heise.de/news/CRON-TRAP-Emulierte-Linux-Umgebung-als-Backdoor-nach-Phishing-Angriff-10005721.html
-
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 19
by
in SecurityNewsSecurity Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape. Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape. CRON#TRAP: Emulated Linux Environments as the Latest Tactic in Malware Staging Typosquat Campaign Targeting npm Developers ToxicPanda:…
-
Hackers Deploy CRON#TRAP for Persistent Linux System Backdoors
by
in SecurityNewsFirst seen on hackread.com Jump to article: hackread.com/hackers-crontrap-persistent-linux-system-backdoors/
-
New CRON#TRAP Malware Infects Windows by Hiding in Linux VM to Evade Antivirus
by
in SecurityNewsCybersecurity researchers have flagged a new malware campaign that infects Windows systems with a Linux virtual instance containing a backdoor capable of establishing remote access to the compromised hosts.The “intriguing” campaign, codenamed CRON#TRAP, starts with a malicious Windows shortcut (LNK) file likely distributed in the form of a ZIP archive via a phishing email.”What makes…
-
Beware of phishing emails delivering backdoored Linux VMs!
Unknown attackers are trying to trick Windows users into spinning up a custom Linux virtual machine (VM) with a pre-configured backdoor, Securonix res… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/11/05/phishing-oneamerica-survey-linux-vm-backdoor/
-
Thanks, Linus. Torvalds patch improves Linux performance by 2.6%
by
in SecurityNews21 lines that show the big man still has what it takes First seen on theregister.com Jump to article: www.theregister.com/2024/11/06/torvalds_patch_linux_performance/