We have thousands of posts on a wide variety of open source and security topics, conveniently organized for searching or just browsing.
Researchers are tracking a new botnet dubbed "FreakOut" that's targeting vulnerabilities in Linux systems. Botnet operators have been mass-scanning for vulnerable Linux devices, and the command-and-control server associated with FreakOut has now targeted several hundred vulnerable devices.
OpenWRT has disclosed a data breach that occurred after a malicious hacker gained access to a forum admin account. The OpenWRT wiki, which contains the official download links, was not compromised, the project said.
The Linux Foundation has offered suggestions on how we can avoid SolarWinds type attacks in the future. Doing so won't be easy - but it must be done.
Linux has become a popular target among cybercriminal groups, who have started infecting Linux machines via a fileless malware installation technique that until recently was more commonly used against Windows-based systems.
Linux malware authors are leveraging the Ezuri Golang crypter to pack their malware with dangerous zero detection capabilities.
The ElectroRAT cryptocurrency-stealing malware was written from scratch and was likely installed by thousands of Linux, Windows and MacOS users over the past year.
The Golang malware has been active since last month, exploiting poor security practices to target both Linux and Windows-based servers. Implementing 2FA with robust passwords and keeping all running software updated can help protect against Golang and other dangerous attacks.
Security researchers have discovered a new self-spreading Golang-based malware that has been actively dropping XMRig cryptocurrency miners on both Windows and Linux servers since early December.
A newly discovered Windows trojan linked to the AridViper threat group, dubbed PyMICROPSIA, shows signs that it might be used to infect computers running Linux and macOS as well.
Despite recent takedown efforts, persistent Trickbot operators are back with a new module call "Trickboot" that detects UEFI/BIOS firmware vulnerabilities. The Trickbot malware is no longer only at threat to Windows users - it is now targeting Linux systems as well.
The eight-year-old Stantinko botnet has updated its Linux malware - now posing as an Apache web server.
The CISA has confirmed that attackers are exploiting mutiple zero-day vulnerabilities in Google Chrome, and urges Linux, Windows and Mac users to update immediately.
Security researchers have discovered a new attack method dubbed "Platypus" that can extract data from Intel CPUs. Intel has now released microcode updates to prevent malicious actors from exploiting the Intel RAPL mechanism with Platypus.
The newly discovered Gitpaste-12 worm exploits GitHub and Pastebin to house component code, and harbors 12 different initial attack vectors.
Security researchers have discovered a Linux version of the human-operated Windows RansomEXX ransomware. This marks the first time that a major Windows ransomware strain has been ported to Linux to aid hackers in their targeted intrusions.
Get expert insight on a new “Gitpaste-12” worming botnet spreading via GitHub and Pastebin in this isBuzz News article.
After the shut down of most of its critical infrastructure, the infamous TrickBot malware is now targeting Linux systems.
The TeamTNT threat group has updated Black-T - its crypto-mining worm - with Linux password-stealing capabilities and with an additional network scanner to help facilitate its spread to other vulnerable devices.
The Apple T2 security chip has finally been jailbroken! Here’s all you need to know about it. The latest update of checkra1n adds support for bridgeOS – the operating system that powers the Apple T2 security chip. For what it’s worth, the T2 chip is not A10 per se but it is derived from the Apple A10 Fusion architecture.
The IPStorm botnet, which was first spotted targeting Windows systems last year, has quadrupled in size to reach 13,500 infected systems - and is now targeting Linux, Android and Mac devices.
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
