Linux

10 essential cybersecurity cheat sheets available for free

October 18, 2023

Cheat sheets are concise, to-the-point references tailored for instant insights. This article provides a curated list of 10 essential cybersecurity cheat sheets, all free to …

Curl project squashes high-severity bug in omnipresent libcurl library (CVE-2023-38545)

October 11, 2023

Curl v8.4.0 is out, and fixes – among other things – a high-severity SOCKS5 heap buffer overflow vulnerability (CVE-2023-38545). Appropriate patches for some older …

GNOME users at risk of RCE attack (CVE-2023-43641)

October 10, 2023

If you’re running GNOME on you Linux system(s), you are probably open to remote code execution attacks via a booby-trapped file, thanks to a memory corruption …

“Looney Tunables” bug allows root access on Linux distros (CVE-2023-4911)

October 5, 2023

A vulnerability (CVE-2023-4911) in the GNU C Library (aka “glibc”) can be exploited by attackers to gain root privileges on many popular Linux distributions, …

Critical zero-days in Exim revealed, only 3 have been fixed

October 2, 2023

Six zero-days in Exim, the most widely used mail transfer agent (MTA), have been revealed by Trend Micro’s Zero Day Initiative (ZDI) last Wednesday. Due to what seems to …

Google “confirms” that exploited Chrome zero-day is actually in libwebp (CVE-2023-5129)

September 27, 2023

UPDATE (September 28, 2023, 03:15 a.m. ET): The CVE-2023-5129 ID has been either rejected or withdrawn by the CVE Numbering Authority (Google), since it’s a duplicate of …

Atlas VPN zero-day allows sites to discover users’ IP address

September 5, 2023

Atlas VPN has confirmed the existence of a zero-day vulnerability that may allow website owners to discover Linux users’ real IP address. Details about this zero-day …

Kali Linux 2023.3 released: Kali NetHunter app redesign, 9 new tools, and more!

August 24, 2023

Offensive Security has released Kali Linux 2023.3, the latest version of its penetration testing and digital forensics platform. New tools in Kali Linux 2023.3 Besides updates …

UAC: Live response collection script for incident response

July 27, 2023

Unix-like Artifacts Collector (UAC) is a live response collection script for incident response that makes use of native binaries and tools to automate the collection of AIX, …

July 2023 Patch Tuesday forecast: A month of instability and uncertainty

July 7, 2023

We’re halfway through 2023 already and moving into our seventh Patch Tuesday of the year next week. There’s been a lot of activity with Microsoft this month which may impact …

Compromised Linux SSH servers engage in DDoS attacks, cryptomining

June 20, 2023

Poorly managed Linux SSH servers are getting compromised by unknown attackers and instructed to engage in DDoS attacks while simultaneously mining cryptocurrency in the …

Kali Linux 2023.2 released: New tools, a pre-built Hyper-V image, a new audio stack, and more!

May 31, 2023

Offensive Security has released Kali Linux 2023.2, the latest version of its popular penetration testing and digital forensics platform. New tools in Kali Linux 2023.2 Aside …