Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 507
Alerts This Week
Warning Icon 1 507

Stay Ahead With Linux Security News

Filter%20icon Refine news
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is continuous patching actually viable?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/156-is-continuous-patching-actually-viable?task=poll.vote&format=json
156
radio
0
[{"id":503,"title":"Delayed updates invite catastrophic breaches.","votes":1,"type":"x","order":1,"pct":50,"resources":[]},{"id":504,"title":"Automated fixes break production environments.","votes":1,"type":"x","order":2,"pct":50,"resources":[]},{"id":505,"title":"Manual approvals cannot keep pace.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security news

We found 63 articles for you...
83

UltraDNS Major Attack Causes Service Disruption for .info Domains

An Internet attack flooded domain name manager UltraDNS with a deluge of data late last week, causing administrators to scramble to keep up and running the servers that host .info and other domains. The assault sent nearly 2 million requests per second to each device connecting the network to the Internet--many times greater than normal--during the four hours of peak activity that hit the company early Thursday morning, said Ben Petro, CEO of UltraDNS.. . . . An Internet attack flooded domain name manager UltraDNS with a deluge of data late last week, causing administrators to scramble to keep up and running the servers that host .info and other domains. The assault sent nearly 2 million requests per second to each device connecting the network to the Internet--many times greater than normal--during the four hours of peak activity that hit the company early Thursday morning, said Ben Petro, CEO of UltraDNS. "This is the largest attack that we've seen," Petro said. He stressed that it didn't affect the company's core domain name system (DNS) services, but administrators had to work fast to get the attack blocked by the backbone Internet companies from which UltraDNS gets its connectivity. "From a network management perspective, it certainly kept us on our toes," he said. The attack came almost exactly a month after a similar attack targeted the DNS root servers, the databases that hold the critical information computers need to maintain top-level domains. Such domains act as the white pages of the Internet, matching domain names--such as www.cnet.com numerical Internet addresses. The link for this article located at ZDNet is no longer available. . A cyber assault inundated the domain management service UltraDNS with an overwhelming surge of traffic, resulting in significant operational chaos.. UltraDNS Attack, Network Disruption, Domain Name System, Internet Service Outage. . LinuxSecurity.com Team

Calendar%202 Oct 16, 2023 User Avatar LinuxSecurity.com Team Hacks/Cracks
72

IPFire 2.27 Core Update 168: Security Update With Improved IPS

Peter Müller has announced the release and general availability of IPFire 2.27 Core Update 168 as the latest stable version of this hardened open-source Linux firewall distribution targeted at routers and firewalls. . IPFire 2.27 Core Update 168 is here one and a half months after the Core Update 167 release to further improve the Intrusion Prevention System (IPS) of the Linux firewall distro by allowing users to individually enable the monitoring mode for each ruleset provider, making parsing and restructuring of changed or updated rulesets faster, as well as support for the downloader to automatically check if a ruleset was updated or not on its providers’ server. IPFire 2.27 Core Update 168 is also here to further improve the overall security of the Linux firewall distribution to prevent network spoofing attacks by dropping any packets that IPFire received on a different interface than it would have been routed back to, implement a defense-in-depth measure to prevent any unprivileged attacker from reading potentially sensitive configuration on an IPFire installation by tightening various file permissions, and updating to OpenSSH 9.0p1, which introduces quantum-resistant cryptography. The link for this article located at 9 to 5 Linux is no longer available. . IPFire 2.27 Core Update 168 boosts system integrity by introducing advanced IPS and enhanced defenses against online threats.. IPFire Update, Intrusion Prevention, Linux Firewall, Network Security, OpenSSH Update. . Brittany Day

Calendar%202 Jun 14, 2022 User Avatar Brittany Day Firewalls
210

Wireshark Security Alert: Malware Risk From Packet Capture Files

Maliciously constructed Wireshark packet capture files might be used to distribute malware , providing recipients can be tricked into double clicking file URL fields. A CVE has been assigned to the security issue (now resolved through a recent update) due its potential for harm, despite the fact that some social engineering trickery is required. . Variants of the same attack could potentially be thrown against users of the popular network security tool, widely used by security analysts and penetration testers, whether they use Windows or Xubuntu Linux-based systems. The attack, discovered by security researcher Lukas Euler of Positive Security , is explained in a recent post on GitLab that features proof-of-concept videos. Even though developers of Wireshark normally avoid asking for a CVE to be created for potential security issues that require user interaction, an exception was made in this case because of the “low barrier to entry and level of control” an attacker might gain. The issue, tracked as CVE-2021-22191 , was resolved through a recent update. . Alterations of a breach could target individuals employing popular cybersecurity solutions, increasing the dangers of malware propagation.. Network Attack Vectors, Wireshark Security Risks, Malware Distribution. . Brittany Day

Calendar%202 Mar 16, 2021 User Avatar Brittany Day Security Vulnerabilities
210

Linux And macOS Network Attack: VPN Session Hijack Risk

Researchers have discovered a security flaw in macOS, Linux, and several other operating systems that could let attackers hijack a wide range of virtual private network (VPN) connections. Learn more about this networking attack: . The bug, discovered by University of New Mexico researchers William J Tolley, Beau Kujath, and Jedidiah R. Crandall, lets a malicious access point or someone on the same network snoop on a user’s VPN session. The snooper can tell that they’re on a VPN and figure out what site they’re visiting. The researchers explain: This provides everything that is needed for an attacker to hijack active connections inside the VPN tunnel. The attack begins by working out the VPN client’s virtual IP address, which is the fake IP address that a VPN gives you when you use it to pretend that you’re somewhere else. It does this by sending SYN (short for synchronization) and ACK (short for acknowledgement) packets to the device. Because it doesn’t know the device’s exact address, it sends these packets to all addresses in the virtual IP space. When this noisy attack eventually hits the victim’s machine, it will respond with a reset (RST) packet that drops the connection. The link for this article located at Naked Security is no longer available. . A security flaw in macOS and Linux could allow VPN hijacking, exposing user browsing. Learn about this significant risk.. researchers, security, macos, linux, other, operating, systems. . Brittany Day

Calendar%202 Dec 09, 2019 User Avatar Brittany Day Security Vulnerabilities
210

Severe Vulnerability In Linux Affects Encrypted VPN Connections

A team of cybersecurity researchers has disclosed a new severe vulnerability affecting most Linux and Unix-like operating systems, including FreeBSD, OpenBSD, macOS, iOS, and Android, that could allow remote 'network adjacent attackers' to spy on and tamper with encrypted VPN connections. Learn more about the bug and how it could impact your system: . The vulnerability, tracked as CVE-2019-14899, resides in the networking stack of various operating systems and can be exploited against both IPv4 and IPv6 TCP streams. Since the vulnerability does not rely on the VPN technology used, the attack works against widely implemented virtual private network protocols like OpenVPN, WireGuard, IKEv2/IPSec, and more, the researchers confirmed. The link for this article located at The Hacker News is no longer available. . The critical security flaw enables cybercriminals to take control of encrypted VPN connections, affecting a range of technologies.. linux security, vpn vulnerabilities, encrypted traffic exploit, network threats. . Brittany Day

Calendar%202 Dec 06, 2019 User Avatar Brittany Day Security Vulnerabilities
82

Election Day Security: Cyber Threats And Incident Reports Explored

After Russia's misinformation campaign rattled the 2016 United States election season, scrutiny over this year's midterms has been intense. And while foreign cybersecurity threats have so far been relatively muted, an unclassified government report obtained by The Boston Globe this week indicates more than 160 suspected election-related incidents since the beginning of August, ranging from suspicious login attempts to compromised municipal networks. . Officials haven't attributed most of it to an actor yet, but the situations include suspicious attempted logins on election systems like voter databases and municipal network compromises. Even in July, Microsoft said it had spotted four incidents of attempted campaign phishing. The link for this article located at Wired is no longer available. . With upcoming elections under intense observation, suspicious access attempts and security breaches jeopardize the trustworthiness of electoral processes.. Election Integrity, Cyber Threats, Network Security, Voter Database Attacks. . Brittany Day

Calendar%202 Nov 06, 2018 User Avatar Brittany Day Government
74

NTP Authentication Bypass Threat: Critical Flaws Impact Network Security

Network admins take note: A set of vulnerabilities can bypass HTPPS with ease and result in spying, outages and authentication bypass. . Discovered on Wednesday by Cisco's security intelligence and research group Talos, the critical bugs are found within the Network Time Protocol (NTP), designed to synchronize the clocks of computers over a network. Developed before 1985, the protocol is one of the oldest still in use. In a blog post documenting the find, Talos said a logic error within the Network Time Protocol daemon (NTPD), the operating system behind the protocol, could allow attackers to bypass authentication procedures and effectively grant them the keys to a network kingdom. . Discovered on Wednesday by Cisco's security intelligence and research group Talos, the critical bugs. network, admins, vulnerabilities, bypass, htpps, spying. . Dave Wreski

Calendar%202 Mar 14, 2017 User Avatar Dave Wreski Network Security
67

RC4 Weakness: HTTPS Compromise and Network Attack Risks Identified

Almost a third of the world's encrypted Web connections can be cracked using an exploit that's growing increasingly practical, computer scientists warned Wednesday. They said the attack technique on a cryptographic cipher known as RC4 can also be used to break into wireless networks protected by the Wi-Fi Protected Access Temporal Key Integrity Protocol.. Researchers have long known statistical biases in RC4 make it possible for attackers to predict some of the pseudo-random bytes the cipher uses to encode messages. In 2013, a team of scientists devised an attack exploiting the weakness that required about 2,000 hours to correctly guess the characters contained in a typical authentication cookie. Using refinements, a separate team of researchers is now able to carry out the same feat in about 75 hours with a 94 percent accuracy. A similar attack against WPA-TKIP networks takes about an hour to succeed. The researchers said the only reliable countermeasure is to stop using RC4 altogether.. Studies indicate that vulnerabilities in RC4 can enable hackers to compromise HTTPS links, posing significant threats to security.. RC4 Encryption Crisis, HTTPS Security Breach, WPA TKIP Vulnerability. . LinuxSecurity.com Team

Calendar%202 Jul 17, 2015 User Avatar LinuxSecurity.com Team Cryptography
News Add Esm H340

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is continuous patching actually viable?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/156-is-continuous-patching-actually-viable?task=poll.vote&format=json
156
radio
0
[{"id":503,"title":"Delayed updates invite catastrophic breaches.","votes":1,"type":"x","order":1,"pct":50,"resources":[]},{"id":504,"title":"Automated fixes break production environments.","votes":1,"type":"x","order":2,"pct":50,"resources":[]},{"id":505,"title":"Manual approvals cannot keep pace.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200