Security Leftovers
-
Security updates for Wednesday [LWN.net]
Security updates have been issued by Fedora (golang-github-gosexy-gettext, golang-github-hub, oci-seccomp-bpf-hook, and popub), Oracle (kernel and kernel-container), SUSE (python2-numpy), and Ubuntu (check-mk and pyjwt).
-
Takeaways from the White House Cyber Workforce and Education Summit [Ed: "Jim Zemlin, Executive Director of the Linux Foundation, was invited to participate," but he knows absolutely nothing about security and his wife is a Microsofter]
Today the White House convened the White House Cyber Workforce and Education Summit to gather government and private-sector leaders to discuss how to address the labor shortage and other challenges for U.S. cybersecurity. The meeting included the nation’s top cybersecurity and workforce policy decision makers, including the National Cyber Director and the Cabinet secretaries from the Departments of Commerce, Homeland Security, and Labor and the Under Secretary of Education.
-
TeamViewer installs suspicious font only useful for web fingerprinting [Ed: Proprietary software is in general suspicious and you probably ought to avoid it any time you can]
So, here’s a bit of a mystery: Why does TeamViewer – the popular remote desktop program – install a font it doesn’t use on your computer? The abstract font (shown in the above image) doesn’t seem to serve any purpose in the software. Intentional or not, it enables websites to detect if you have TeamViewer installed on your computer.
-
Securing Containers At Scale - Container Journal
While containers deliver speed and agility to software development and deployment, they also add a layer of complexity that invites unprecedented security concerns, including how to manage vulnerabilities in a dynamic container deployment environment. The question then becomes how to ensure the technologies you are using to secure software within containers are keeping pace with both business and security? This is a question DevOps teams have been tasked with as they continually rethink their approach to application security (AppSec) and how to build and ship software in a containerized world.
In addition to scanning container images before production, DevOps teams today also need to find and maintain continual visibility into their containers. Because containerized applications grow older, they are continually subject to new security vulnerabilities. Even though security patches are helpful, they do not guarantee the stability or security of a container. This must be handled through automation and better container management.
-
New Luna ransomware encrypts Windows, Linux, and ESXi systems [Ed: Windows has back doors as a ramp, Linux hasn't; but this is an attempt to give an illusion of parity, courtesy of a Microsoft boosting site]
A new ransomware family dubbed Luna can be used to encrypt devices running several operating systems, including Windows, Linux, and ESXi systems.
- Login or register to post comments
- Printer-friendly version
- 1325 reads
- PDF version
More in Tux Machines
- Highlights
- Front Page
- Latest Headlines
- Archive
- Recent comments
- All-Time Popular Stories
- Hot Topics
- New Members
today's howtos
| Open Hardware: XON/XOFF and Raspberry Pi Pico
|
Security Leftovers
| How to Apply Accent Colour in Ubuntu Desktop
A step-by-step tutorial on how to apply accent colour in Ubuntu desktop (GNOME) with tips for Kubuntu and others. |
Recent comments
2 days 4 hours ago
2 days 8 hours ago
2 days 8 hours ago
3 days 15 hours ago
3 days 16 hours ago
3 days 17 hours ago
3 days 17 hours ago
3 days 17 hours ago
3 days 20 hours ago
3 days 21 hours ago