LinuxSecurity.com

Syndikovat obsah LinuxSecurity - Security Articles
The central voice for Linux and Open Source security news.
Aktualizace: 2 min 58 sek zpět

New malware hides as legit nginx process on e-commerce servers>

3 Prosinec, 2021 - 13:00
eCommerce servers are being targeted with remote access malware that hides on Nginx servers in a way that makes it virtually invisible to security solutions. ''NginRAT essentially hijacks a host Nginx application to stay undetected. To do that, NginRAT modifies core functionality of the Linux host system. When the legitimate Nginx web server uses such functionality (eg dlopen), NginRAT intercepts it to inject itself.''
Kategorie: Hacking & Security

IPFire Linux Firewall Now Supports exFAT, pe>

1 Prosinec, 2021 - 13:00
IPFire 2.27 Core Update 161 has been released as a new maintenance update to the hardened open-source GNU/Linux distro that primarily performs as a router and a firewall. The release brings exFAT support to IPFire and boosts the intrusion prevention system's performance.
Kategorie: Hacking & Security

New Side-Channel Vulnerability in the Linux Kernel Enabling DNS Cache Poisoning>

30 Listopad, 2021 - 13:00
A recent research paper by a team at University of California, Riverside, shows the existence of previously overlooked side channels in the Linux kernels that can be exploited to attack DNS servers . According to the researchers, the issue with DNS roots in its design, that never really took security as a key concern and that made it extremely hard to retrofit strong security features into it.
Kategorie: Hacking & Security

CronRat Magecart malware uses 31st February date to remain undetected>

29 Listopad, 2021 - 13:00
Security researchers have discovered a Linux-based remote access trojan (RAT) that uses an unusual stealth technique to remain out of sight from security products. The malware, dubbed CronRat, hides in the calendar subsystem of Linux servers (''cron'') on a non-existent day, 31 February, according to a blog post by security researchers at Sansec.
Kategorie: Hacking & Security

Anatomy of a Linux Ransomware Attack>

28 Listopad, 2021 - 13:00
Ransomware has dominated cybersecurity news headlines for the past decade, and for good reason. Through a combination of advanced encryption and effective extortion mechanisms, a ransomware attack can have devastating consequences for any victim including data loss, reputation harm, recovery costs and significant downtime.
Kategorie: Hacking & Security

Imunify360 Bug Leaves Linux Web Servers Open to Code Execution, Takeover>

26 Listopad, 2021 - 13:00
CloudLinux's security platform for Linux-based websites and web servers contains a high-severity PHP deserialization bug, leaving web servers vulnerable to code execution and tekeover.
Kategorie: Hacking & Security

AWS commits to update its own Linux every other year>

24 Listopad, 2021 - 13:00
Amazon Web Services has announced that it will release an updated version of its own Linux every two years, starting with Amazon Linux 2022, which it is previewing now. The SELinux security module is enabled and enforced by default in AL2022, but EC2 instances running the OS won't automatically implement patches or security updates. Users can instead choose to automate installation of packages, or patches, or both.
Kategorie: Hacking & Security

Linux Kernel 5.14 Reached End of Life, Users Urged to Upgrade to Linux 5.15 LTS>

23 Listopad, 2021 - 13:00
The time has come to say goodbye to another Linux kernel series, Linux 5.14, which is now end-of-life and it won't receive further updates, so it's time to upgrade to a newer kernel branch.
Kategorie: Hacking & Security

Lead Microsoft Engineer Kevin Sheldrake Brings Sysmon to Linux>

22 Listopad, 2021 - 13:00
Thanks to Kevin Sheldrake, co-author of Sysmon for Linux from Microsoft for working with us on this article.Seven years after Microsoft Sysinternals released Sysmon '' a system monitoring tool for Windows that reports key system activity via the event log '' we were very proud to release the Linux version of the same tool at the Sysinternals @25 celebration event . (You can still catch up on the talks by clicking on the event link .)
Kategorie: Hacking & Security

Alma and Rocky Linux release 8.5 builds, Rocky catches up with secure boot>

22 Listopad, 2021 - 13:00
CentOS 8.5 is available - but with only 6 weeks before end of life. Luckily, AlmaLinux and Rocky Linux, both of which provide community builds of Red Hat Enterprise Linux (RHEL), have released builds matching RHEL 8.5, with Rocky's work catching up with Alma by being signed for secure boot.
Kategorie: Hacking & Security

Hackers deploy Linux malware, web skimmer on eCommerce servers>

19 Listopad, 2021 - 13:00
Attackers are deploying a Linux backdoor on compromised e-commerce servers after injecting a credit card skimmer into online shops' websites.
Kategorie: Hacking & Security

Best Linux desktops for beginners 2021>

18 Listopad, 2021 - 13:00
Tired of Windows? Sick of paying big money for Macs? Want a better, more secure desktop? Then give Linux a try! Here's an introduction to the best, most secure Linux desktops for beginners.
Kategorie: Hacking & Security

Microsoft gives Windows Subsystem for Linux a new icon, fixes issues and updates kernel>

17 Listopad, 2021 - 13:00
Microsoft has released the latest preview version of Windows Subsystem for Linux, bringing with it a lengthy changelog, an updated kernel and a new icon.
Kategorie: Hacking & Security

CentOS Alternative Rocky Linux 8.5 Is Out Now with Secure Boot Support, Updated Components>

16 Listopad, 2021 - 13:00
Rocky Linux 8.5 is now out with Secure Boot support and updated components. The enterprise OS is yet another free and open-source CentOS alternative based on Red Hat Enterprise Linux.
Kategorie: Hacking & Security

Keep calm and learn Rust: We'll be seeing a lot more of the language in Linux very soon>

15 Listopad, 2021 - 13:00
To become a Linux developer, you used to need C as your passport. Now Rust can let you be an OS programmer as well.
Kategorie: Hacking & Security

BusyBox flaws highlight need for consistent IoT updates>

11 Listopad, 2021 - 13:00
Security researchers have found and reported 14 vulnerabilities in the BusyBox userspace tool that's used in millions of embedded devices running Linux-based firmware. While the flaws don't have high criticality, some of them do have the potential to result in remote code execution (RCE). These flaws highlight the need for consistent IoT updates.
Kategorie: Hacking & Security

Could Oracle Linux be the Logical Enterprise-Ready CentOS Replacement?>

10 Listopad, 2021 - 18:22
Red Hat's recent decision to discontinue CentOS 8 has left a critical void in the enterprise Linux market, shifting the spotlight onto other enterprise-ready Linux distributions. One distro that stands out as a viable CentOS 8 replacement among respected enterprise Linux distributions such as Ubuntu, Red Hat Enterprise Linux (RHEL), AlmaLinux and SUSE is Oracle Linux , an OS compiled from the same open-source code as RHEL. Oracle Linux provides a secure open-source platform for the enterprise and is ideal for database environments. LinuxSecurity researchers worked with Honglin Su from the Oracle Linux and Virtualization product management team along with the Kernel development team to answer our questions regarding why Oracle Linux is an excellent OS for the security-conscious enterprise, what makes the distro a logical enterprise-ready CentOS replacement, what the future holds for Oracle Linux, and more!
Kategorie: Hacking & Security

Rust-proofing the internet with ISRG's Prossimo>

10 Listopad, 2021 - 13:00
The Internet Security Research Group (ISRG) 's new Prossimo project seeks to make many basic internet programs and protocols memory-safe by rewriting them in Rust .
Kategorie: Hacking & Security

The 9 Best Docker Alternatives for Container Management>

9 Listopad, 2021 - 13:00
Learn about nine great Docker alternatives for container management to consider using in your next project.
Kategorie: Hacking & Security

Microsoft just expanded its malware protection for Linux servers>

8 Listopad, 2021 - 13:00
Microsoft has announced it's adding even more security features to the protection it offers Linux operating systems for the cloud.
Kategorie: Hacking & Security