Advisories

Linux Security Week

Get the latest open source security news delivered to your mailbox each week. Our 'Linux Security Week' newsletter summarizes the most notable security issues
and the latest developments within the Linux and open source communities. It is distributed every Monday morning by the editorial staff at Guardian Digital.

Linux Security Week: November 9th, 2020

Linux Security Week: November 9th, 2020

Thank you for subscribing to our Linux Security Week newsletter! In this weekly newsletter, we strive to provide readers with a comprehensive overview of the week’s most relevant open source security news. We want to provide you with the type of content you are interested in, and would love to hear your thoughts on this week's articles.

Today’s newsletter highlights our two most recent feature articles: Wireguard Brings Speed and Simplicity to VPN Technology and Open Source is Revolutionizing Careers in Cybersecurity: What You Need to Know. We also examine various topics including a new version of the Windows RansomEXX ransomware targeting Linux systems and the newly discovered Gitpaste 12 worm, which exploits GitHub and Pastebin to house component code and harbors 12 different initial attack vectors. Happy Monday - and happy reading!

WireGuard Brings Speed and Simplicity to VPN Technology - VPN technology has become a critical part of our digital lives, serving a variety of purposes including securing wireless connections, resolving geographical limitations, reaching prohibited websites and protecting the privacy of sensitive data. However, the unfortunate reality is that many of the VPN protocols on the market today are comlex, slow, unstable and insecure. Luckily, the new, innovative Wireguard protocol has demonstrated significant promise in all of these areas - and has earned a place in the mainline Linux kernel as a result. This article will briefly explore VPN protocols and potential concerns when implementing a VPN, and will dive deeper into the unique benefits that Wireguard offers users.

Open Source is Revolutionizing Careers in Cybersecurity - What You Need to Know - Technology is an integral part of our everyday lives. Widespread reliance on devices that connect us to the Internet and cloud platforms that facilitate digital communications has markedly increased since the beginning of this pandemic. As technology companies are scrambling to meet businesses and consumers evolving needs, one trend has become clearly apparent - open-source is at the forefront of modern technological innovation, revolutionizing careers available in the field of cybersecurity in the process. 


  Linux Mint introduces its own take on the Chromium web browser (Nov 4)
 

Linux Mint developers - with some new hardware - have tackled the challenge of compiling and releasing Mint's own version of the open-source Chromium web browser.

  Use Static Analysis to Secure Open Source (Nov 4)
 

Open Source lends itself to a new way of certifying software: Continuous Assurance. In this approach, automated tools and processes ensure that, as code changes, it continually satisfies compliance, quality, and security requirements. "Continuous Assurance integrates directly into development and benefits from the always-up-to-date nature of cloud services, making it a perfect match for Open Source."

  OpenSSF and Linux Foundation offer 3 free courses on developing secure open source software (Nov 3)
 

The Linux Foundation's OpenSSF is offering training courses to help keep the open source ecosystem secure by teaching DevOps professionals how to develop secure software.

  New Gitpaste-12 Worming Botnet Spreads via GitHub And Pastebin – Experts Perspectives (Nov 6)
 

Get expert insight on a new Gitpaste-12 worming botnet spreading via GitHub and Pastebin in this isBuzz News article.

  LibreOffice 7.0.3 Released with More Than 90 Bug Fixes, Update Now (Nov 3)
 

Are you using LibreOffice 7.0 on your PC? If so, you'll want to update to the new version immediately to experience improved stability, reliability and security. The Document Foundation has announced the unexpected availability of the LibreOffice 7.0.3 update to the latest LibreOffice 7.0 office suite series, addressing some important bugs.

  Dell enables Linux hardware privacy controls (Nov 6)
 

Dell is adding code into Linux to support its hardware privacy controls. Although this isn't the first time privacy has been built into a Linux-powered laptop, it is still noteworthy that one of the world's largest PC vendors now thinks Linux is so important to its audience that it has decided to support its new privacy hardware from the start.

  TeamViewer RPM repo left door open for malicious packages (Nov 6)
 

A vulnerability discovered in TeamViewer RPM auto-updates on Linux allowed attackers to easily install and execute arbitrary software with root permissions. Luckily, TeamViewer has fixed this flaw in version 15.11.6.

  How to Set Up WireGuard VPN on Ubuntu 20.04 (Nov 2)
 

Learn how to set up WireGuard VPN - an innovative VPN (Virtual Private Network) technology that utilizes state-of-the-art cryptography - on Ubuntu 20.04 to act as a VPN server. This setup can be used to surf the web anonymously, bypass Geo-restricted content, allow remote workers to connect to a corpoarte network securely and protect against Man in the Middle attacks.

  How to Force Users to Change Their Passwords on Linux (Nov 5)
 

Passwords are the keystone to account security. Learn how to reset passwords, set password expiration periods, and enforce password changes on your Linux network in this How-To Geek tutorial.

  20 Awesome Nmap Command Examples in Linux (Nov 5)
 

Nmap is an awesome open-source network discovery and reconnaissance tool that can be used to improve network security by revealing detailed information about target hosts and identifying potential vulnerabilities. Learn about 20 helpful nmap commands in this LinuxTechi guide. 

  Linux version of RansomEXX ransomware discovered (Nov 9)
 

Security researchers have discovered a Linux version of the human-operated Windows RansomEXX ransomware. This marks the first time that a major Windows ransomware strain has been ported to Linux to aid hackers in their targeted intrusions. 

  Gitpaste-12 Worm Targets Linux Servers, IoT Devices (Nov 9)
 

The newly discovered Gitpaste-12 worm exploits GitHub and Pastebin to house component code, and harbors 12 different initial attack vectors.

Please enable / Bitte aktiviere JavaScript!
Veuillez activer / Por favor activa el Javascript![ ? ]

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.