Language Selection

English French German Italian Portuguese Spanish

Security: Slingshot, Symantec Certification Authorities, and DDoS Defense

Filed under
  • Potent malware that hid for six years spread through routers

    Slingshot—which gets its name from text found inside some of the recovered malware samples—is among the most advanced attack platforms ever discovered, which means it was likely developed on behalf of a well-resourced country, researchers with Moscow-based Kaspersky Lab reported Friday. The sophistication of the malware rivals that of Regin—the advanced backdoor that infected Belgian telecom Belgacom and other high-profile targets for years—and Project Sauron, a separate piece of malware suspected of being developed by a nation-state that also remained hidden for years.

  • Distrust of Symantec TLS Certificates

    A Certification Authority (CA) is an organization that browser vendors (like Mozilla) trust to issue certificates to websites. Last year, Mozilla published and discussed a set of issues with one of the oldest and largest CAs run by Symantec. The discussion resulted in the adoption of a consensus proposal to gradually remove trust in all Symantec TLS/SSL certificates from Firefox. The proposal includes a number of phases designed to minimize the impact of the change to Firefox users:

  • How Creative DDOS Attacks Still Slip Past Defenses

    Distributed denial of service attacks, in which hackers use a targeted hose of junk traffic to overwhelm a service or take a server offline, have been a digital menace for decades. But in just the last 18 months, the public picture of DDoS defense has evolved rapidly. In fall 2016, a rash of then-unprecedented attacks caused internet outages and other service disruptions at a series of internet infrastructure and telecom companies around the world. Those attacks walloped their victims with floods of malicious data measured up to 1.2 Tbps. And they gave the impression that massive, "volumetric" DDOS attacks can be nearly impossible to defend against.

More in Tux Machines

Endless OS Version 3.3.13

Improved Chromium behaviour with low memory. The Chromium browser now frees up the memory used by other tabs much more effectively when you’re running very low on memory. This means you have to wait a little longer after you switch to one of these tabs, but keeps the system running more smoothly and helps to prevent crashes. Read more

Ubuntu 18.10 Will Boot Faster, Thanks to LZ4 Initramfs Compression

Canonical's Balint Reczey recently proposed the implementation of LZ4 compression to Ubuntu's initramfs (initial ramdisk) instead of the older gzip compression used in previous releases of the wildly used operating system. LZ4 is a lossless data compression algorithm that offers extremely fast compression and decompression speed. During some initial tests on an old laptop, the developer reports that the initramfs extraction time decreased from approximately 1.2 seconds to about 0.24 seconds. The creation of the initramfs also received a speed boost of 2-3 seconds, decreasing from roughly 24 seconds to about 21 seconds, despite of slightly bigger initramfs files. Read more

Fresh Benchmarks Of CentOS 7 On Xeon & EPYC With/Without KPTI/Retpolines

While every few weeks or so we have ended up running benchmarks of the latest Linux Git kernel to see the evolving performance impact of KPTI (Kernel Page Table Isolation) and Retpolines for Meltdown and Spectre V2 mitigation, respectively, a request came in last week from a premium supporter to see some new comparison test runs on CentOS 7 with its older 3.10-evolved kernel. Read more

Reviewing logins on Linux

The last command provides an easy way to review recent logins on a Linux system. It also has some useful options –- such as looking for logins for one particular user or looking for logins in an older wtmp file. The last command with no arguments will easily show you all recent logins. It pulls the information from the current wtmp (/var/log/wtmp) file and shows the logins in reverse sequential order (newest first). Read more