Linux Hacks & Cracks - Page 23

We have thousands of posts on a wide variety of open source and security topics, conveniently organized for searching or just browsing.

Lessons from Bootkitty: Securing Linux Systems Against UEFI Intrusions

New Linux security threats mark critical junctures that challenge existing policies and test security protocols to their limit. One such milestone was the recent discovery of Bootkitty, the first known UEFI bootkit explicitly designed to target ...
Dec 02, 2024
  0

Perfctl Unveiled: Risks, Detection, and Proactive Defense Measures

Security researchers have discovered a sophisticat...
Nov 26, 2024
  0
28.Lock Globe Esm H115

Unveiling the WolfsBane Backdoor: Gelsemium's Linux Variant of Gelsevirine

WolfsBane, the latest Linux variant of the Gelsevirine ...
Nov 25, 2024
  0
31.Lock DigitalRoom Esm H115

Discover Hacks/Cracks News

As predicted, more branch prediction processor attacks are discovered

As predicted, more branch prediction processor attacks are discovered

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Researchers from the College of William and Mary, Carnegie Mellon, the University of California Riverside, and Binghamton University have described a security attack that uses the speculative execution features of modern processors to leak sensitive information and undermine the security boundaries that operating systems and software erect to protect important data.

Thousands of etcd installs are leaking secret server keys online

Thousands of etcd installs are leaking secret server keys online

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Thousands of servers running etcd are exposing user credentials publicly on the Internet. According to security researcher Giovanni Collazo, a quick query made through the Shodan search engine revealed a total of 2,284 etcd servers which are leaking credentials, including the passwords and keys required for cms_admin, mysql_root, and postgres server infrastructure.

000webhost hacked, 13 million customers exposed

000webhost hacked, 13 million customers exposed

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Free website hosting service 000webhost has suffered a data breach which has placed the service's security practices under scrutiny. 000webhost is a free web hosting service which supports both PHP and MySQL, catering for millions of users worldwide. On Wednesday, the firm told users in a Facebook message that the company had suffered a databreach on its main server.

15-year-old arrested over TalkTalk hack

15-year-old arrested over TalkTalk hack

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

A 15-year-old teenager has been arrested in Northern Ireland by law enforcement over their alleged role in the TalkTalk hack. In a statement released late Monday, the UK Metropolitan Police force said the Police Service of Northern Ireland (PSNI) and detectives from the Metropolitan Police Cyber Crime Unit (MPCCU) executed a search warrant and arrested a 15-year-old boy in County Antrim, Northern Ireland.

Magento sites targeted by Neutrino exploit kit

Magento sites targeted by Neutrino exploit kit

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Some websites running the e-commerce platform Magento appear to have been infected with code that directs victims to the Neutrino exploit kit. It's not exactly clear how the Magento sites were infected, wrote Denis Sinegubko, a senior malware researcher with Sucuri, a Delware-based security company.

USB Killer flash drive can fry your computer

"USB Killer" flash drive can fry your computer

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

USB sticks have long been a mechanism for delivering malware to unsuspecting computer users. A booby-trapped flash drive, for instance, was the means by which the US and Israel reportedly infected Iran's Natanz uranium enrichment facility with the Stuxnet worm. And, in case anyone thought USB stick attacks had lost their novelty, last year's Bad USB proof-of-concept exploit delivered a highly programmable attack platform that can't be detected by today's defenses.

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved