LinuxSecurity.com

Syndikovat obsah
The central voice for Linux and Open Source security news.
Aktualizace: 13 min 33 sek zpět

FBI chief claims encryption is an 'urgent public safety issue'

11 Leden, 2018 - 10:55
LinuxSecurity.com: If "Going Dark" were an actual thing, then surely the FBI would be completely blind by now. After all, the bureau has been harping on how it was "going dark" for 25 years! That's right, the FBI started making claims about "going dark" due to encryption way back in 1993, according to Bruce Schneier.
Kategorie: Hacking & Security

Fedora 28 Looking To Replace Glibc's libcrypt With libxcrypt

10 Leden, 2018 - 12:18
LinuxSecurity.com: As upstream Glibc is working on deprecating libcrypt for its eventual removal from the codebase, Fedora developers are looking at using libxcrypt for their hashing/encoding crypto library.
Kategorie: Hacking & Security

Adobe patches information leak vulnerability

10 Leden, 2018 - 12:17
LinuxSecurity.com: In comparison to Microsoft which is having a busy month patching due to Spectre and Meltdown, Adobe's latest patch update addresses only one vulnerability.
Kategorie: Hacking & Security

Hackers target Winter Olympics with new custom-built fileless malware

8 Leden, 2018 - 10:44
LinuxSecurity.com: Hackers are targeting the upcoming Winter Olympics with a phishing and malware campaign directed at the organisations that provide infrastructure and other support for the Games.
Kategorie: Hacking & Security

How to hack public Wi-Fi to mine for cryptocurrency

8 Leden, 2018 - 10:43
LinuxSecurity.com: A researcher has published a proof-of-concept (PoC) project called CoffeeMiner which shows how threat actors can exploit public Wi-Fi networks to mine cryptocurrencies.
Kategorie: Hacking & Security

Is a Good Offense the Best Defense Against Hackers?

8 Leden, 2018 - 10:42
LinuxSecurity.com: The proposed Active Cyber Defense Certainty (ACDC) Act has its pros and cons. But it's not the only option for protecting your company's digital assets.
Kategorie: Hacking & Security

Who the Hell Is This 'Crypto-Genius?'

5 Leden, 2018 - 11:54
LinuxSecurity.com: If you, like me, spend a lot of time Googling cryptocurrencies, you've probably seen that face. You might already know the one I'm talking about: It stares at you from web ads, blankly, with just a hint of a smile, like a bad 80s yearbook photo.
Kategorie: Hacking & Security

Spectre and Meltdown: What you need to know going forward

5 Leden, 2018 - 11:36
LinuxSecurity.com: As you've likely heard by now, there are some problems with Intel, AMD, and ARM processors. Called Meltdown and Spectre, the discovered attack possibilities are rather severe, as they impact pretty much every technical device on the network or in your house (PCs, laptops, tablets, phones, etc.).
Kategorie: Hacking & Security

Researchers Discover Two Major Flaws in the World's Computers

4 Leden, 2018 - 11:22
LinuxSecurity.com: Computer security experts have discovered two major security flaws in the microprocessors inside nearly all of the world's computers. The two problems, called Meltdown and Spectre, could allow hackers to steal the entire memory contents of computers, including mobile devices, personal computers and servers running in so-called cloud computer networks.
Kategorie: Hacking & Security

Today's CPU vulnerability: what you need to know

3 Leden, 2018 - 22:13
LinuxSecurity.com: Last year, Google's Project Zero team discovered serious security flaws caused by "speculative execution," a technique used by most modern processors (CPUs) to optimize performance.
Kategorie: Hacking & Security

'Kernel memory leaking' Intel processor design flaw forces Linux, Windows redesign

3 Leden, 2018 - 10:58
LinuxSecurity.com: A fundamental design flaw in Intel's processor chips has forced a significant redesign of the Linux and Windows kernels to defang the chip-level security bug.
Kategorie: Hacking & Security

Cryptojacking Has Gotten Out of Control

3 Leden, 2018 - 10:57
LinuxSecurity.com: Cryptojacking, which exploded in popularity this fall, has an ostensibly worthy goal: Use an untapped resource to create an alternative revenue stream for games or media sites, and reduce reliance on ads.
Kategorie: Hacking & Security

Linode and Vultr no longer disables SELinux by default in Fedora Server 27

2 Leden, 2018 - 19:54
LinuxSecurity.com: Thanks to Daniel Aleksandersen for sending this in. "One of Fedora's differentiating features compared to other Linux distributions is its well-maintained and low-friction default SELinux policy set. The two virtual private server (VPS) hosting providers Linode and Vultr have been offering server instances of Fedora Server with Security-Enhanced Linux (SELinux) enforcement disabled by default."
Kategorie: Hacking & Security

The mysterious case of the Linux Page Table Isolation patches

2 Leden, 2018 - 19:51
LinuxSecurity.com: Thanks to Daniel Aleksandersen for sending this in. "tl;dr: there is presently an embargoed security bug impacting apparently all contemporary CPU architectures that implement virtual memory, requiring hardware changes to fully resolve. Urgent development of a software mitigation is being done in the open and recently landed in the Linux kernel, and a similar mitigation began appearing in NT kernels in November. In the worst case the software fix causes huge slowdowns in typical workloads.
Kategorie: Hacking & Security

Ransomware to hit cloud computing in 2018, predicts MIT

2 Leden, 2018 - 11:42
LinuxSecurity.com: Ransomware targeting cloud services is one of the six biggest cyber threats likely to face organisations in 2018, according to the Massachusetts Institute of Technology
Kategorie: Hacking & Security

Critical Flaw Reported In phpMyAdmin Lets Attackers Damage Databases

2 Leden, 2018 - 11:40
LinuxSecurity.com: A critical security vulnerability has been reported in phpMyAdmin-one of the most popular applications for managing the MySQL database-which could allow remote attackers to perform dangerous database operations just by tricking administrators into clicking a link.
Kategorie: Hacking & Security

Driving Open Standards in a Fragmented Networking Landscape

2 Leden, 2018 - 11:38
LinuxSecurity.com: Once upon a time, standards were our friends. They provided industry-accepted blueprints for building homogeneous infrastructures that were reliably interoperable. Company A could confidently build an application and - because of standards - know that it would perform as expected on infrastructure run by Company B.
Kategorie: Hacking & Security

How Classical Cryptography Will Survive Quantum Computers

29 Prosinec, 2017 - 11:18
LinuxSecurity.com: Justin Trudeau, the Canadian prime minister, certainly raised the profile of quantum computing a few notches last year, when he gamely-if vaguely1-described it for a press conference. But we've heard a lot about quantum computers in the past few years, as Google, I.B.M., and N.A.S.A., as well as many, many universities, have all been working on, or putting money into, quantum computers for various ends.
Kategorie: Hacking & Security

2018 Security Predictions - Double Up on Linux Attacks

28 Prosinec, 2017 - 12:11
LinuxSecurity.com: With IoT botnets added to their roadmap, the hackers are now looking to supercharge it by exploiting Linux. Many IoT devices use inexpensive embedded Linux systems, which are notorious for having insecure defaults. By creating just a little malware code, these hackers think they can double their botnet power.
Kategorie: Hacking & Security

New ibm linux-only mainframe delivers breakthrough security for next-gen applications

28 Prosinec, 2017 - 12:10
LinuxSecurity.com: A key feature of the new LinuxONE Emperor II, IBM Secure Service Container is an exclusive LinuxONE technology that represents a significant leap forward in data privacy and security capabilities. Last year, more than four billion data records were lost or stolen, a 556 percent increase over 2015 1.
Kategorie: Hacking & Security