Security and DRM Leftovers
-
Azure OMIGOD Flaw Under Attack [Ed: Microsoft Azure as de facto back door in Linux]
-
Microsoft Azure OMI Vulnerabilities Are Being Exploited
-
Security experts weigh in on Microsoft Azure security holes [Ed: Security experts would never touch Azure]
-
Microsoft asks Azure Linux admins to manually patch OMIGOD bugs
-
Apple warns of arbitrary code execution zero-day being actively exploited on Macs
Apple has warned iPhone and Mac users it's aware of security bugs in its software that are being actively exploited.
First off, the iGiant thanked Google for spotting CVE-2021-30869 in macOS Catalina. It's a nasty flaw, as it's in the XNU kernel at the heart of Apple's operating systems including macOS and iOS.
As Apple's advisory explains, "a malicious application may be able to execute arbitrary code with kernel privileges" by exploiting this security hole. Thus, malware running on a system can use the bug to take total control. The fruit-themed company says the flaw existed thanks to a "type confusion issue" that was sorted out "with improved state handling."
-
Microsoft WPBT flaw lets hackers install rootkits on Windows devices [Ed: Even Microsoft-connected sites such as this know that Windows is inadequate for security]
Security researchers have found a flaw in the Microsoft Windows Platform Binary Table (WPBT) that could be exploited in easy attacks to install rootkits on all Windows computers shipped since 2012.
-
Is it OK to use stolen data? What if it's scientific research in the public interest?
There's a fine line between getting hold of data that may be in the public interest and downright stealing data just because you can. And simply because the data is out there – having been stolen by online intruders and then leaked – does not mean it is right to use it.
A paper published in Nature Machine Intelligence this week is an effort to help guide data scientists and researchers through the ethical dilemmas which present themselves when considering using information obtained from data breaches.
-
A new zero-day is being exploited to compromise Macs (CVE-2021-30869)
Flagged by researchers Erye Hernandez and Clément Lecigne of Google’s Threat Analysis Group and Ian Beer of Google Project Zero, the vulnerability is a type confusion issue found in XNU, the kernel of Apple’s macOS and iOS operating systems.
-
Plug critical VMware vCenter Server flaw before ransomware gangs start exploiting it (CVE-2021-22005)
“This vulnerability can be used by anyone who can reach vCenter Server over the network to gain access, regardless of the configuration settings of vCenter Server,” the company noted.
-
Apple* and John Deere* shareholders file resolutions questioning their anti-repair stances | U.S. PIRG
Shareholders press these leading Right to Repair opponents to explain themselves as regulatory pressure mounts
-
Ransomware attacks reach disturbing levels
-
Ransomware attacks have reached 'stratospheric' levels
-
Ransomware attacks reach 'stratospheric' levels finds new research
- Login or register to post comments
- Printer-friendly version
- 3039 reads
- PDF version
More in Tux Machines
- Highlights
- Front Page
- Latest Headlines
- Archive
- Recent comments
- All-Time Popular Stories
- Hot Topics
- New Members
digiKam 7.7.0 is releasedAfter three months of active maintenance and another bug triage, the digiKam team is proud to present version 7.7.0 of its open source digital photo manager. See below the list of most important features coming with this release. |
Dilution and Misuse of the "Linux" Brand
|
Samsung, Red Hat to Work on Linux Drivers for Future TechThe metaverse is expected to uproot system design as we know it, and Samsung is one of many hardware vendors re-imagining data center infrastructure in preparation for a parallel 3D world. Samsung is working on new memory technologies that provide faster bandwidth inside hardware for data to travel between CPUs, storage and other computing resources. The company also announced it was partnering with Red Hat to ensure these technologies have Linux compatibility. |
today's howtos
|
Recent comments
1 year 11 weeks ago
1 year 11 weeks ago
1 year 11 weeks ago
1 year 11 weeks ago
1 year 11 weeks ago
1 year 11 weeks ago
1 year 11 weeks ago
1 year 11 weeks ago
1 year 11 weeks ago
1 year 11 weeks ago