Senior Security Specialist – IT-Online | #linux | #linuxsecurity

Enterprise Cloud Services: Job Title – Senior Security Specialist Act as the senior technical escalation point for the Infrastructure security team Act as Information Security Manager for the Business Unit Maintain ISO27001 Certification, including the management and ownership of the Information Security Management System (ISMS) Assist with Infrastructure Security Architecture…

read more

Security Researchers Dig Deep Into Siemens Software Controllers | #linux | #linuxsecurity

LAS VEGAS – BLACK HAT 2022 – A team of researchers from the Technion research university in Israel is conducting an analysis of Siemens software controllers and they are gradually identifying security issues. The researchers have analyzed a PC-based programmable logic controller (PLC) — or SoftPLC — from Siemens. The…

read more

How credential phishing attacks threaten a host of industries and organizations | #linux | #linuxsecurity

The first half of 2022 saw a 48% increase in email attacks from the previous six months, with almost 70% of them containing a credential phishing link, says Abnormal Security. Image: Adobe Stock Credential phishing campaigns have grown not just in number but in sophistication. By using elaborate tactics, successful…

read more

KB5012170: Microsoft August Patch Tuesday fixes critical Secure Boot GRUB vulnerability | #linux | #linuxsecurity

Microsoft released the Patch Tuesday or Update Tuesday for the month of August a couple of days ago. You can find our coverage here: In this month’s Patch, the Redmond company also issued an important fix related to the Secure Boot DBX with its KB5012170 update. For those unaware, the…

read more

CISA Issues Warning on Active Exploitation of UnRAR Software for Linux Systems | #linux | #linuxsecurity

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added a recently disclosed security flaw in the UnRAR utility to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. Tracked as CVE-2022-30333 (CVSS score: 7.5), the issue concerns a path traversal vulnerability in the Unix versions of…

read more

GRIT Ransomware Report: July 2022 | #linux | #linuxsecurity

Published 8/11/22, 9:00am As we move into our 3rd GRIT Ransomware Report (the standalone May ransomware report can be found here, and the Q2 ransomware report is inclusive of June), the team has noticed a demonstrable increase in ransomware activity compared to past reports. This includes a massive increase in reports…

read more

PyPI Package ‘secretslib’ Drops Fileless Linux Malware to Mine Monero | #linux | #linuxsecurity

The curious case of ‘secretslib’—a fileless cryptominer Sonatype has identified a ‘secretslib’ PyPI package that describes itself as “secrets matching and verification made easy.” On a closer inspection though, the package covertly runs cryptominers on your Linux machine in-memory (directly from your RAM), a technique largely employed by fileless malware…

read more

K8s Tutorial: Use Polaris to Quickly Identify Kubernetes Security, Reliability and Efficiency Issues in Your Cluster | #linux | #linuxsecurity

The Site Reliability Engineering team at Fairwinds has the unique experience of managing hundreds of Kubernetes clusters for a diverse set of companies, and they have found that clients often put resources into their clusters that cause their company to spend extra money on cloud costs, make their applications less…

read more

Google wants to make Linux kernel flaws harder to exploit | #linux | #linuxsecurity

Image: Hinterhaus Productions/ GETTY Google says it uses Linux in “almost everything” from Chromebooks to the cloud. Now it is increasing its rewards for security researchers who can spot flaws in the open source operating system. Since 2020, Google has run an open-source Kubernetes-based Capture-the-Flag (CTF) project called kCTF which…

read more

Linux 5.19.1 Released With LTS Kernels Back To 4.19 For The “PBRSB” CPU Issue | #linux | #linuxsecurity

A number of new Linux kernel stable releases are out this week with new mitigations around the latest batch of published CPU security vulnerabilities. Linux 5.19.1, 5.18.17, 5.15.60, 5.10.136, 5.4.210, and 4.19.255 are the new releases out today. Most notable with these new Linux kernel releases are eIBRS-PBRSB after finding…

read more

Security vulnerabilities found in Intel and AMD processors | #linux | #linuxsecurity

Security researchers have discovered vulnerabilities in Intel and AMD processors that may lead to information disclosure. Most Intel 10th, 11th and 12th generation processors are affected by a new vulnerability that the researchers have named ÆPIC Leak. The vulnerability is an architectural bug according to the researchers, which sets it…

read more

Exciting times for open source | #linux | #linuxsecurity

Monique Williams, Hyland SA, says it’s still the case, even today, that open source adoption provides quick access to innovation and the latest technologies. The use of open source software has been on the rise for a while, and it’s not showing any signs of slowing down. In fact, in…

read more

Microsoft Edge adds new “Enhanced Security” mode to make browsing safer | #linux | #linuxsecurity

Microsoft Edge has added a new “Enhanced Security” mode to make users’ browsing experience safer. Available on Windows, macOS, and Linux, the new feature is designed as an optional browsing mode that provides an additional layer of protection to users when browsing the web, especially when visiting unfamiliar sites. New…

read more

Unblock Youtube from School or Elsewhere — Secret Technique | by J William | Aug, 2022 | #linux | #linuxsecurity

Do you want to unblock youtube from school? It’s simpler than you would imagine getting around restrictions and accessing YouTube from wherever. source: designed by canva Fortunately, you should be able to use a VPN to unblock YouTube wherever you are (a Virtual Private Network). This will hide your IP…

read more