Security

ID theft, vulnerabilities, privacy issues, etc

Linux users targeted by mystery drive-by rootkit

Filed under
Linux
Security

techworld.com: Security researchers have discovered what appears to be an experimental Linux rootkit designed to infect its highly select victims during a classic drive-by website attack.

Why Linux Will Never Suffer From Viruses Like Windows

Filed under
Linux
Security

hothardware.com: There seems to be a recurring phenomenon in the technology press, where any trojan that affects Linux or Macs becomes front page news. On the other hand, trojans that affect Windows are mostly ignored.

'FIRST ever' Linux, Mac OS X-only password sniffing Trojan spotted

Filed under
Security

theregister.co.uk: Security researchers have discovered a potential dangerous Linux and Mac OS X cross-platform trojan.

Emergency Patches Pushed for Flash, PHP

Filed under
Software
Security

pcworld.com: The Adobe fix aims to cure an "object confusion vulnerability" discovered in all versions of the player -- Windows, Macintosh, Linux, and Android -- but thus far has only been used to attack Windows systems using Microsoft's browser software.

Student stiffs penetration tool BackTrack Linux with 0-day

Filed under
Linux
Security

theregister.co.uk: A student has discovered a critical vulnerability in BackTrack, a flavour of Linux that's a favourite among security pros.

'Flashback' Mac Malware: One More Reason to Switch to Linux

Filed under
Mac
Security

pcworld.com: Given the vast numbers of Macs that are apparently infected with the Flashback Trojan malware, it's not at all surprising to see that sales of Mac security software are now skyrocketing.

Decade-old flaw could affect Linux, Macs

Filed under
Security

zdnet.com.au: Patches have been released for file-networking protocol software, Samba, revealing that the software, which is used extensively in Macs and Linux, has been subject to a critical vulnerability for almost a decade.

The Privacy Pickle

Filed under
Security

linuxinsider.com: In the meantime, another compelling conversation has been raging for some time now, and Linux Girl would be remiss not to cover it, because it's an important topic. Privacy, that is -- and the costs that go along with it.

Responses To The Linux Desktop Security Problem

Filed under
Linux
Security

phoronix.com: Just about 24 hours ago I spread the news about a major vulnerability in X.Org / XKB that makes it trivial for anyone with physical access to a Linux-based desktop system to easily bypass any screensaver lock whether you're using GNOME, KDE, or most other desktop environments. So what's changed in the past day?

Many Eyes, Many Heads

Filed under
OSS
Security

mrpogson.com: One of the advantages of FLOSS (Free/Libre Open Source Software) is that it’s not created and distributed in the vacuum of a heavily EULAed/binary/closed environment and anyone can examine the code.

Zero-day suspected in BIND 9 DNS server crashes

Filed under
Security

itpro.co.uk: BIND 9 DNS servers across the web have crashed, with a zero-day vulnerability believed to be the cause.

Kernel Log: more details on the kernel.org hack

Filed under
Linux
Security
Web

h-online.com: The recent Kernel Summit, LinuxCon Europe and Realtime Workshop events revealed lots of interesting developments from the kernel scene, including a few details of the hack at kernel.org.

Linux Malware: Are We There Yet?

Filed under
Linux
Security

datamation.com: For years, one of the biggest benefits of escaping Microsoft Windows was that running a security suite with a Linux distribution was completely unnecessary. There simply wasn't a need for it.

WineHQ database compromise

Filed under
Software
Security
Web

winehq.org: I am sad to say that there was a compromise of the WineHQ database system.

89 trees missing from linux-next

Filed under
Linux
Security

lwn.net: Of the 171 trees that represent work for the next merge window, 89 only exist on kernel.org machines. This means (obviously) that I have not had updates to those 89 trees since the kernel.org servers were taken down.

MySQL.com Hacked to Serve Malware

Filed under
Software
Security
Web

pcworld.com: The website for the open-source MySQL database was hacked and used to serve malware to visitors Monday.

Also: MySQL at the core of commercial open source

Dodging Bullets With Debian GNU/Linux

Filed under
Linux
Security

mrpogson.com: A recent bug reported in Ubuntu GNU/Linux is that apt-key fails to properly check the package-signing keys downloaded from an Ubuntu repository. Debian has the same faulty code but thankfully it is disabled.

Is Linux Still Safe?

Filed under
Linux
Security
  • Is Linux Still The Safest Operating System?
  • Some Linux Foundation crack attack details emerge
  • Open Ballot: Is Linux really so secure?

Linux sites fall victim to hacking attack

Filed under
Linux
Security
Web

zdnet.com.au: The Linux Foundation has pulled its sites offline due to a security breach that occurred on 8 September, which it believes was in connection with an attack on kernel.org.

Kernel.org breach does not reflect well on admins

Filed under
Linux
Security
Web

itwire.com: Seventeen days. That how long it took for the elite administrators at the Linux kernel project to find out that servers at the project had been breached.

Syndicate content