Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 524
Alerts This Week
Warning Icon 1 524

Stay Ahead With Linux Security News

Filter%20icon Refine news
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is continuous patching actually viable?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/156-is-continuous-patching-actually-viable?task=poll.vote&format=json
156
radio
0
[{"id":503,"title":"Delayed updates invite catastrophic breaches.","votes":1,"type":"x","order":1,"pct":50,"resources":[]},{"id":504,"title":"Automated fixes break production environments.","votes":1,"type":"x","order":2,"pct":50,"resources":[]},{"id":505,"title":"Manual approvals cannot keep pace.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security news

We found 30 articles for you...
83

RedGolf Threat Group Activity: KEYPLUG Backdoor Attacks On Linux Systems

It has been reported by the Recorded Future’s Insikt Group that RedGolf, a Chinese state-sponsored threat actor group, was using a backdoor designed especially for Windows and Linux systems called KEYPLUG to infiltrate networks. . As one of the world’s most prolific threat groups, RedGolf has been active against a variety of industries around the world for many years. There is a history of this group developing and using a variety of custom malware families over the years. It has demonstrated an ability to weaponize newly reported vulnerabilities quickly. During 2021 and 2022, RedGolf targeted US state government entities using KEYPLUG, a custom and modular Linux backdoor. Several KEYPLUG samples and infrastructures that RedGolf used from at least 2021 until 2023 have been identified by Insikt Group. . BlueTide cyber group uses SHADOWNET vulnerability to compromise Mac and Linux environments for data exfiltration.. RedGolf Threat Group, KEYPLUG Backdoor, Linux Malware, Chinese Attack. . LinuxSecurity.com Team

Calendar%202 Apr 02, 2023 User Avatar LinuxSecurity.com Team Hacks/Cracks
83

APT10 Economic Espionage: Infiltration of Visma Network by Chinese Threat

The Chinese state-sponsored threat actorAPT10used stolen remote access software credentials to infiltrate the network of Norwegian managed services provider Visma last year, likely in an effort to launch secondary attacks against the MSP’s clients. . The link for this article located at SC Media is no longer available. . The link for this article located at SC Media is no longer available. . chinese, state-sponsored, threat, actorapt10used, stolen, remote, software, credentials, infil. . LinuxSecurity.com Team

Calendar%202 Feb 07, 2019 User Avatar LinuxSecurity.com Team Hacks/Cracks
83

LabCorp Data Security Incident: Numerous Patient Records Exposed

LabCorp, a healthcare diagnostics company, has shut down its systems after a suspected network breach, which could have put millions of health records at risk. . In a report to the United States Securities and Exchange Commission, the company announced that during the weekend of July 14 2018, it had detected suspicious activity on its IT network and immediately took specific systems offline. The company said that the suspicious activity has been detected only on LabCorp Diagnostics systems, and that "there was no indication that it affected systems used by Covance Drug Development." The link for this article located at InfoSecurity is no longer available. . In a report to the United States Securities and Exchange Commission, the company announced that duri. labcorp, healthcare, diagnostics, company, systems, suspected, network, breac. . LinuxSecurity.com Team

Calendar%202 Jul 19, 2018 User Avatar LinuxSecurity.com Team Hacks/Cracks
74

How Botnets Exploit Known Flaws for Easier Network Breaches

Why hack a network when you can get a botnet to do it for you? It turns out that botnets might be an easier way to break into a network, not least by taking the grunt work out of it. It's not a new concept -- we've seen it before with bots running through lists of default usernames and passwords to hijack Internet of Things devices.. It's not unheard of to see botnets conducting device exploitation using public and known vulnerabilities to silently break into devices to take them over, and steal data or conduct attacks. The link for this article located at ZDNet is no longer available. . It's not unheard of to see botnets conducting device exploitation using public and known vulnerabili. network, botnet, turns, botnets, might. . Brittany Day

Calendar%202 Apr 17, 2018 User Avatar Brittany Day Network Security
76

Essential Actions IT Leaders Must Take Following a Network Breach

The first thing an IT security executive should do after the corporate network has been breached is fall back on the incident response plan that was put in place well before attackers got through the carefully constructed defenses. . That The link for this article located at CSO Online is no longer available. . Understand vital actions to implement post-network intrusion and shield your company comprehensively.. Network Breach Recovery, Cyber Attack Management, Incident Response Planning. . Alex

Calendar%202 Jun 23, 2015 User Avatar Alex Organizations/Events
82

Chris Roberts Detained: Airplane Network Safety Concerns Raised

Our client, Chris Roberts, a founder of the security intelligence firm One World Labs, found himself detained by the FBI earlier this week after tweeting about airplane network security during a United Airlines flight. When Roberts landed in Syracuse, he was questioned by the FBI, which ultimately seized a number of his electronic devices. . EFF attorneys now represent Roberts, and we. Cybersecurity expert Alex Morgan questioned by authorities following a post highlighting vulnerabilities in airline systems' networks.. Airplane Security, Network Safety, Cyber Incident, Security Researcher, FAA Compliance. . Dave Wreski

Calendar%202 Apr 20, 2015 User Avatar Dave Wreski Government
83

Nicholas Webber Accesses Prison Network Through IT Lessons

A UK hacker behind bars for computer fraud hacked into his prison's computer system during an IT lesson. Nicholas Webber, 21, of Southsea, Hampshire, was able to access the network after being allowed to join the jail's technology classes.. Webber was sent down for five years in May 2011 for masterminding the infamous GhostMarket.net cybercrime marketplace. Fraudsters used his website to trade stolen credit-card details. GhostMarket, one of the biggest underground bazaars of its type with 8,500 members, even offered tutorials on identity theft for inexperienced and wannabe criminals. The link for this article located at The Register UK is no longer available. . British hacker Oliver Grant infiltrates electronic surveillance during computer classes while incarcerated for a four-year term.. Nicholas Webber, prison security breach, network access, hacker training, cybercrime incidents. . LinuxSecurity.com Team

Calendar%202 Mar 05, 2013 User Avatar LinuxSecurity.com Team Hacks/Cracks
83

Bit9 SQL Injection: Hackers Exploit Security Flaw For Attacks

Bit9 said a common Web application vulnerability was responsible for allowing hackers to ironically use the security vendor's systems as a launch pad for attacks on other organizations. . Based in Waltham, Mass., the company sells a security platform that is designed in part to stop hackers from installing their own malicious software. In an embarrassing admission, Bit9 said earlier this month that it neglected to install its own software on a part of its network, which lead to the compromise. The link for this article located at InfoWorld is no longer available. . Based in Waltham, Mass., the company sells a security platform that is designed in part to stop hack. common, application, vulnerability, responsible, allowing, hackers, ironically. . LinuxSecurity.com Team

Calendar%202 Feb 28, 2013 User Avatar LinuxSecurity.com Team Hacks/Cracks
News Add Esm H340

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is continuous patching actually viable?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/156-is-continuous-patching-actually-viable?task=poll.vote&format=json
156
radio
0
[{"id":503,"title":"Delayed updates invite catastrophic breaches.","votes":1,"type":"x","order":1,"pct":50,"resources":[]},{"id":504,"title":"Automated fixes break production environments.","votes":1,"type":"x","order":2,"pct":50,"resources":[]},{"id":505,"title":"Manual approvals cannot keep pace.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200