Linux Archives - Help Net Security

Linux

Kali Linux 2019.4 includes new undercover mode for pentesters doing work in public places

November 27, 2019

Offensive Security, maintainers of the popular Kali Linux open source project, released Kali Linux 2019.4, the latest iteration of the Kali Linux penetration testing platform. …

Guess what? You should patch Exim again!

October 1, 2019

Hot on the heels of a patch for a critical RCE Exim flaw comes another one that fixes a denial of service (DoS) condition (CVE-2019-16928) that could also be exploited by …

Critical Exim flaw opens servers to remote code execution, patch now!

September 9, 2019

The Exim mail transfer agent (MTA) is impacted by a critical vulnerability that may allow local or unauthenticated remote attackers to execute programs with root privileges on …

Offensive Security unveils Kali Linux roadmap

June 20, 2019

Offensive Security unveiled much of the 2019-2020 roadmap for the open source Kali Linux project, the most popular operating system used by penetration testers and ethical …

SACK TCP flaws can crash, slow down Linux-based systems

June 18, 2019

An engineering manager at Netflix has unearthed several TCP networking vulnerabilities in Linux and FreeBSD kernels that could lead to systems crashing or consuming too many …

Linux servers under attack via latest Exim flaw

June 14, 2019

It didn’t take long for attackers to start exploiting the recently revealed Exim vulnerability (CVE-2019-10149). Active campaigns One security enthusiast detected …

Microsoft’s Attack Surface Analyzer now works on Macs and Linux, too

May 20, 2019

Microsoft has rewritten and open-sourced Attack Surface Analyzer (ASA), a security tool that points out potentially risky system changes introduced by the installation of new …

Software and apps running on RedHat Enterprise Linux to touch $10 trillion of business revenues this year

May 9, 2019

Software and applications running on Red Hat Enterprise Linux are expected to contribute to more than $10 trillion worth of global business revenues in 2019, powering roughly …

Mirai variant picks up new tricks, expands list of targeted devices

March 19, 2019

Mirai, the infamous malware that turns Linux-based IoT devices into remotely controlled bots, has been updated to target new devices and device types. Among these are LG …

Snapd flaw gives attackers root access on Linux systems

February 13, 2019

A vulnerability affecting Snapd – a package installed by default in Ubuntu and used by other Linux distributions such as Debian, OpenSUSE, Arch Linux, Fedora and Solus …

RunC container escape flaw enables root access to host system

February 12, 2019

A serious vulnerability in runC, a widely used CLI tool for spawning and running containers, could be exploited to compromise the runC host binary from inside a privileged …

Vulnerable cloud infrastructure experiencing increasing attacks

January 25, 2019

Attackers are increasingly targeting vulnerable cloud infrastructure to exploit it for covert cryptojacking or to deliver ransomware, Securonix researchers warn. Some attacks …

Linux

Kali Linux 2019.4 includes new undercover mode for pentesters doing work in public places

Guess what? You should patch Exim again!

Critical Exim flaw opens servers to remote code execution, patch now!

Offensive Security unveils Kali Linux roadmap

SACK TCP flaws can crash, slow down Linux-based systems

Linux servers under attack via latest Exim flaw

Microsoft’s Attack Surface Analyzer now works on Macs and Linux, too

Software and apps running on RedHat Enterprise Linux to touch $10 trillion of business revenues this year

Mirai variant picks up new tricks, expands list of targeted devices

Snapd flaw gives attackers root access on Linux systems

RunC container escape flaw enables root access to host system

Vulnerable cloud infrastructure experiencing increasing attacks

Don't miss

First patches for the Citrix ADC, Gateway RCE flaw released

Researchers create OT honeypot, attract exploits and fraud

Mitsubishi Electric discloses data breach, possible data leak

Data-driven vehicles: The next security challenge

Review: Enzoic for Active Directory