Need an in-depth introduction to a new security topic? Our features articles will bring up up-to-date on everything from buffer overflows to SE Linux policy development.
The popularity of web applications is constantly growing as businesses and corporations host several services through them. However, companies and businesses that do have web applications still face the threat of vulnerabilities.
Brian Gomez
Today we have awesome news for the security-conscious Linux sysadmin- securing your systems by staying up-to-date on the latest advisories issued by your distro(s) just got easier and far more convenient with the creation of the @LS_advisories Twitter handle! LinuxSecurity Live Advisory Updates is a page that provides live updates on critical Linux security advisories issued by 15 popular Linux distros. The page is sponsored by LinuxSecurity.com (@lnxsec on Twitter) as a way to help admins monitor the latest advisory updates on Twitter.
Brittany Day
Linux ransomware is on the rise, and an attack on your system could result in the loss of critical data and significant downtime - if important files have not been backed up frequently and stored securely.
Brittany Day
Vulnerability management is vital to a robust, proactive endpoint security strategy, enabling organizations to identify and address security weaknesses before they lead to a cyberattack or data breach. The cyclical process involves identifying IT assets and correlating them with a continually updated vulnerability database to identify threats, misconfigurations, and security bugs.
Brittany Day
Multiple high-impact security issues have been discovered in Thunderbird, which could result in denial of service (DoS) attacks leading to server crashes and loss of access, the execution of arbitrary code, or spoofing attacks. These findings include a vulnerability involving the incorrect code generation during JIT compilation (CVE-2023-25751), and high-severity memory safety bugs present in Thunderbird 102.8 (CVE-2023-28176).
Brittany Day
Businesses have increasingly been integrating technology within their workflows. In America, 94% of businesses use technology to increase efficiency.
Brittany Day
Previously known to target Windows systems only, a new Linux version of the IceFire ransomware that exploits an IBM Aspera Faspex file-sharing vulnerability (CVE-2022-47986) has recently been discovered. While the Windows version is known to target technology companies, the IceFire Linux ransomware variant has been observed targeting media and entertainment companies.
Brittany Day
Written by Linux security expert and LinuxSecurity.com Founder Dave Wreski. Attacks targeting Linux have surged in recent years due to the mass migration of workloads to the cloud and the increase in IoT and other connected devices on the network. Traditional endpoint security solutions for Linux, which typically rely on the same algorithms and techniques developed to secure Windows desktops and don’t address the attack patterns unique to Linux, are no longer sufficient to secure modern Linux workloads against today’s dynamic and evasive threats.
Brittany Day
Cross site-scripting (XSS), an attack in which a threat actor injects malicious executable scripts into the code of a trusted application or website, is a prevalent and serious threat to developers and their projects. It is estimated that more than 60% of web applications are susceptible to XSS attacks, which eventually account for more than 30% of all web application attacks.
Brittany Day
As threats to digital privacy, security and anonymity become a growing concern, organizations and individuals alike are increasingly turning to virtual private networks, or VPNs, to bolster security without sacrificing convenience. One of the most economical cybersecurity technologies available today, VPNs are simple to set up and use, and nearly all businesses have a corporate VPN as part of their IT infrastructure.
Brittany Day
Several critical and high-severity security issues, including multiple use-after-free vulnerabilities and a stack-based buffer overflow vulnerability, were discovered in the Linux kernel. These vulnerabilities could lead to denial of service (DoS) attacks, privilege escalation, or the execution of arbitrary code. This article will discuss the issues discovered, who is impacted, and how to protect against these flaws.
Brittany Day
Computer systems, software, applications, and other network interfaces are vulnerable to various threats. Failure to find these vulnerabilities can lead to the downfall of the company.
Dave Wreski
In today’s world, almost every part of our life is directly or indirectly linked to the Internet. As cyberattacks grow increasingly more advanced, sensitive data continues to be at risk. Knowing how to protect your online identity is now a necessity.
Brittany Day
