Security and Fear, Uncertainty, Doubt (FUD) Tactics
-
Security updates for Wednesday
Security updates have been issued by Debian (kernel and privoxy), Fedora (libtpms, privoxy, and x11vnc), openSUSE (chromium), Red Hat (.NET 5.0, .NET Core, .NET Core 2.1, .NET Core 3.1, dotnet, and dotnet3.1), SUSE (git, kernel, openssl-1_1, and wpa_supplicant), and Ubuntu (git and openssh).
-
[Older] Use JoomScan to scan Joomla for vulnerabilities on Kali
When installing a content management system for your website, it's easy to get lazy and assume that it's going to do all the work for you. A CMS like Joomla certainly does make things more convenient, and lets you publish a polished website very quickly, but that doesn't mean you shouldn't take some extra time to secure it.
-
Microsoft Security Researcher Proposes Unprivileged Chroot For Linux [Ed: The same company that puts back doors in everythinfg for the NSA is now posing as "security"; watch the replies in comments]
Security researcher and Microsoft engineer Mickaël Salaün is proposing unprivileged chroot support for the Linux kernel.
-
Scanning for Secrets in Source Code [Ed: Wrongly insinuating people all use Microsoft proprietary software (NSA PRISM) prison called GitHub]
As a developer, I admit that I’ve committed secrets to public Github repositories before. Hardcoded secrets have always been a problem in organizations and are one of the first things I look for during a penetration test.
When developers write secrets such as passwords and API keys directly into source code, these secrets can make their way to public repos or application packages, then into an attacker’s hands. As microservice architectures and API-centric applications become mainstream, developers often need to exchange credentials and other secrets programmatically. This means that developers can sometimes make mistakes when handling sensitive data. -
Researchers Unveil New Linux Malware Linked to Chinese Hackers [Ed: It seems possible that right about now, in order to distract from the Microsoft Exchange catastrophe (Microsoft uses xenophobia for blame-passing), they will spam or Googlebomb "Linux" with China malware something]
Cybersecurity researchers on Wednesday shed light on a new sophisticated backdoor targeting Linux endpoints and servers that's believed to be the work of Chinese nation-state actors.
- Login or register to post comments
- Printer-friendly version
- 14635 reads
- PDF version
More in Tux Machines
- Highlights
- Front Page
- Latest Headlines
- Archive
- Recent comments
- All-Time Popular Stories
- Hot Topics
- New Members
digiKam 7.7.0 is releasedAfter three months of active maintenance and another bug triage, the digiKam team is proud to present version 7.7.0 of its open source digital photo manager. See below the list of most important features coming with this release. |
Dilution and Misuse of the "Linux" Brand
|
Samsung, Red Hat to Work on Linux Drivers for Future TechThe metaverse is expected to uproot system design as we know it, and Samsung is one of many hardware vendors re-imagining data center infrastructure in preparation for a parallel 3D world. Samsung is working on new memory technologies that provide faster bandwidth inside hardware for data to travel between CPUs, storage and other computing resources. The company also announced it was partnering with Red Hat to ensure these technologies have Linux compatibility. |
today's howtos
|
Feels like distraction
New malware tied to China targets Linux endpoints and servers [Ed: Distracting from the Microsoft blunder by mentioning Linux and China?]
Way to distract from what happened to Microsoft Exchange
Chinese hackers target Linux systems with RedXOR backdoor
Chinese state hackers target Linux systems with new malware
Chinese state hackers target Linux systems with new malware [Ed: Now Microsoft boosters join the FUD, blaming on "Linux" systems that are simply not patched. Way to distract from what happened to Microsoft.]
The author worked many years
The author worked many years for Softpedia, so it’s no wonder...
Wow
I did not even remember that...
More FUD
Linux Systems Under Attack By New RedXOR Malware [Ed: Microsoft-connected press pushing hard an anti-Linux angle (non-news, not of interest) to distract from the Microsoft Exchange blunder]
More FUD
Linux systems targeted with dangerous new Chinese malware [Ed: Mayank Sharma participates in an apparent attempt to deflect/distract from the Microsoft scandal, which it blames on China instead of its own incompetence. They badmouth Linux using phony non-news and manufactured drama. Shame on them.]
Indian media adopts Microsoft slant that blames "China"
Dangerous new 'RedXOR' Linux malware linked to Chinese state actors