Get the latest open source security news delivered to your mailbox each week. Our 'Linux Security Week' newsletter summarizes the most notable security issues and the latest developments within the Linux and open source communities. It is distributed every Monday morning by the editorial staff at Guardian Digital.
Linux Security Week: January 11th, 2021
3 - 5 min read
Thank you for reading our Linux Security Week newsletter! In this weekly newsletter, we strive to provide readers with a comprehensive overview of the week's most relevant open source security news. We want to provide you with the type of content you are interested in, and would love to hear your thoughts on this week's articles.
"Neither Windows 10 or macOS are the prettiest desktop OS -- that designation belongs to a Debian-based Linux distro from China called "Deepin". Learn what you can expect from from the latest version of Deepin - Deepin 20.1.
The Golang malware has been active since last month, exploiting poor security practices to target both Linux and Windows-based servers. Implementing 2FA with robust passwords and keeping all running software updated can help protect against Golang and other dangerous attacks.
Most container work is done with Linux - but the fact that some jobs are also done with Windows-based containers can't be ignored. Now Red Hat makes it possible to manage both Linux and Windows containers with Kubernetes via OpenShift.
A high-risk RCE bug impacting PHP-based websites running a vulnerable version of the web-app creation tool Zend Framework and some Laminas Project releases has been discovered and disputed by Zend. Regardless of the dispute, Zend has issued a patch addressing this vulnerability which "provides type checking of the $streamName property before performing a cleanup operation (which results in an unlink() operation, which, previously, could have resulted in an implied call to an an objects __toString() method) in the Laminas\Http\Response\Stream destructor".
"Sure Linux is the most secure OS out there, but can we trust third-party apps and your Internet Service Provider? Definitely not." Learn how to install the Tor browser on Ubuntu Linux to protect your privacy online and gain full control of your data in this Fossbytes tutorial.
Linux has become a popular target among cybercriminal groups, who have started infecting Linux machines via a fileless malware installation technique that until recently was more commonly used against Windows-based systems.