Language Selection

English French German Italian Portuguese Spanish

Security: Windows Ransomware and Malware, New Patches and More

Filed under
Security
  • Ransomware attacks on business, government pick up pace

    Ransomware attacks on businesses and governments will continue at a more rapid pace, thanks to newly found security vulnerabilities, according to one global security firm which forecasts further increases in ransomware attacks and VPN “scandals” in 2020 and beyond.

  • ThreatList: A Third of Biometric Systems Targeted by Malware in Q3 [iophk: Windows TCO]

    Kaspersky researchers found that in the third quarter, one in three (37 percent) of computers within the firm’s telemetry that collect, process and store biometric data were targeted by malware attacks. The malware in question included spyware and remote access trojans (RATs), which accounted for 5.4 percent of all computers analyzed; followed by malware used in phishing attacks (5.1 percent), ransomware (1.9 percent) and trojan bankers (1.5 percent).

  • Biometric data processing and storage system threats

    Thirdly (and most importantly), biometric data, once compromised, is compromised for good: users cannot change their stolen fingerprints the way they do stolen passwords. What’s more, biometric data may turn out to be compromised for all applications at the same time. An individual will therefore potentially be affected for the rest of his or her life.

    Given all of the issues above, it is remarkable how careless biometric authentication system developers and users are about protecting these systems and the biometric data collected by them against computer attacks.

  • Security updates for Thursday

    Security updates have been issued by Arch Linux (firefox), Fedora (cyrus-imapd, freeipa, haproxy, ImageMagick, python-pillow, rubygem-rmagick, sqlite, squid, and tnef), openSUSE (haproxy), Oracle (microcode_ctl), and Ubuntu (squid, squid3).

  • Aviatrix VPN vulnerability left user endpoints wide open

    Aviatrix, a supplier of open source enterprise virtual private networks (VPNs) to customers including BT, Nasa and Shell, has patched a serious vulnerability in its client that could have given an attacker escalation privileges on a machine to which they already had access.

    The vulnerability was uncovered by Immersive Labs researcher and content engineer Alex Seymour, after noticing that the VPN client was unusually verbose when booting on a Linux machine.

    Its disclosure comes hot on the heels of government warnings about the possibility of state-sponsored threat actors targeting high-profile organisations through VPN vulnerabilities in products from the likes of Pulse Secure, Palo Alto Networks and Fortinet.

More in Tux Machines

MX Linux Now Has a Raspberry Pi Edition You Can Try Right Now

Meet the MX-Fluxbox Raspberry Pi respin, a special edition of this lightweight and very popular Debian-based GNU/Linux distribution that aims to combine the goodness of MX Linux and the lightweight of the Fluxbox window manager with the educational flexibility of the official Raspberry Pi OS. The Fluxbox environment is accompanied by elements from the renowned GNOME, Xfce and LXDE desktop environment to make things even more fun. On top of that, you’ll find all your favorite apps, such as the Mozilla Firefox ESR web browser, Claws Mail email client, VLC media player, Thunar file manager, FeatherPad text editor, as well as Geany and Thonny IDEs. Read more

exGENT Live Distro Makes Gentoo Linux Fun to Use in 2021 with the LXQt Desktop

About eight months since the last update to the exGENT distribution, which aims to offer the Linux community a live and installable operating system based on Gentoo. I’ve highlighted live and installable because Gentoo no longer generates regular live ISO images you can try without installing the system. The exGENT 2021 release makes things even more interesting since it uses the latest Linux 5.10 LTS kernel series, which automatically translates to better hardware support and support for newer hardware. However, the kernel included in the live system is Linux 5.6.7 and Linux kernel 5.10 LTS will be used in the installed system. Read more

Android Leftovers

Why KubeEdge is my favorite open source project of 2020

I believe edge computing, which "brings computation and data storage closer to the location where it is needed to improve response times and save bandwidth," is the next major phase of technology adoption. The widespread use of mobile devices and wearable gadgets and the availability of free city-wide WiFi in some areas create a lot of data that can provide many advantages if used properly. For example, this data can help people fight crime, learn about nearby activities and events, find the best sale price, avoid traffic, and so on. Gartner says the rapid growth in mobile application adoption requires an edge infrastructure to use the data from these devices to further progress and improve quality of life. Some of the brightest minds are looking for ways to use the rich data generated from our mobile devices. Take the COVID-19 pandemic, for example. Edge computing can gather data that can help fight the spread of the virus. In the future, mobile devices might warn people about the potential for community infection by providing live updates to their devices based on processing and serving data collected from other devices (using artificial intelligence and machine learning). Read more