Language Selection

English French German Italian Portuguese Spanish

Security Leftovers

Filed under
Security

  • Scottish Environmental Protection Agency hit by ransomware attack [iophk: Windows TCO]

    That data was stolen became typical in ransomware attacks in the second half of 2020. S0-called “double-tap” ransomware has come to the fore, with ransomware gangs no longer content with simply trying to extort companies and organizations by encrypting their files. They’re also stealing data and threatening to publish the stolen data if the ransom isn’t paid.

  • Cyber Attack - what is affected and how to contact us [iophk: Windows TCO]

    On Christmas Eve, the Scottish Environment Protection Agency confirmed that it was responding to a significant cyber-attack affecting its contact centre, internal systems, processes and internal communications. We are continuing to respond to the ongoing ransomware attack likely to be by international serious and organised cyber-crime groups. The matter is subject to a live criminal investigation and the duty of confidence is embedded in law.

  • Cyber criminals demand ransom to unlock Sepa systems [iophk: Windows TCO]

    Critical services like flood forecasting are unaffected but entire systems will have to be rebuilt and it's unlikely the 1,300 workers will be able to get access to their old emails and online files.

  • Russia-Linked [Crack] Spread Via New Malware, Security Experts Say

    Raindrop “was used against a select number of victims that were of interest to the attackers,” according to a blog post by a team headed by Eric Chien, the technical director at Symantec, which is a unit of Broadcom Inc.

  • Doc & RTF Malicious Document

    A reader pointed us to a malicious Word document.

  • Biden DHS, Intel picks stress need to prioritize cybersecurity after SolarWinds [attack]

    DHS nominee Alejandro Mayorkas and DNI nominee Avril Haines each pointed to the specific need to secure the federal government against cyber threats following the recently discovered Russian hack of IT group SolarWinds, which compromised many key federal agencies and potentially thousands of businesses.

  • Malwarebytes also hit by SolarWinds attackers, but through different vector

    Security vendor Malwarebytes was also hit by the same actor that was implicated in the attacks using SolarWinds Orion network management software, but says the attack vector was not the software.

  • FireEye releases update on attacks, offers Azure auditing script

    Cyber security firm FireEye has released new guidance for those who have been compromised by the SolarWinds attackers to harden their environments and remediate areas where attacks are feared.

  • Senior TV journalist Nidhi Razdan files complaint with Delhi Police over fake Harvard job offer

    Delhi Police's cybercrime cell will investigate a complaint received from senior TV journalist Nidhi Razdan who has said she was a victim of a phishing scam in which she was given a fraudulent offer of a position of Associate Professor at the Harvard University.

    Razdan filed the complaint with the Delhi Police on Monday regarding commission of cognisable offences including forgery, cheating, identity fraud and impersonation by unknown accused against her. Earlier, she had filed a similar complaint with the Jammu and Kashmir Police on 16 January when she was in Srinagar.

  •      

  • Cisco loses top researcher as Rascagnères moves to Kaspersky

           

             

    The Cisco Talos Intelligence Group has lost one of its better researchers, with Paul Rascagnères moving over to join Kaspersky's Global Threat Research unit this year.

  •      

  • Big upward tick in Windows ransomware attacks on US public sector

           

             

    Ransomware continued on its merry ways in the US public sector in 2020, with 2354 attacks on government, healthcare facilities and schools. The attacks have been only on systems running Microsoft's Windows operating system.

More in Tux Machines

Games: Koi Farm, Vintage Story, and Valheim

  • Koi Farm is a simple relaxing chill-out experience about raising fish

    Koi Farm released recently and it's quite a little gem. It's a small game though, all about raising Koi with an "infinite number" of patterns you can create by cross-breeding all the different colours and you end up with lots of different mutations as you go along. You can pick them up, drop them between a big display pool and a smaller breeding pool and eventually let them go to swim on with their lives. On top of that, you can also turn them into special cards to stick in your book and progress through it.

  • Survival game Vintage Story gets an official mod database, improved Wayland support

    Out for your next survival game that isn't Valheim? Do give Vintage Story a go, which on the surface looks like Minecraft but it's so much more interesting and far deeper mechanically. While this is mainly a stability update for the previous release, which was pretty huge, some fun bits have been put in. One of the big additions is an official Mod Database, for players to upload and download from. Eventually, they said, it will integrate with the game client to "blur the line on what is vanilla content and what is modded content" (if you want to use it, that is). The rest of the update is mostly small tweaks and fixes but their support of Linux continues shining. For Linux players, you should hopefully see improved support for running the game on Wayland. They upgraded the version of OpenTK used along with some extra Wayland fixes that should improve mouse support there. See the full changelog here. [...] A community member is also hosting a server for Linux fans...

  • The tenth Norse world sure is busy as Valheim hits 5 million sold | GamingOnLinux

    Fully expected of course, Valheim continues pulling in masses of new users with the announcement that it's now sold 5 million copies over the first month. What is it? For those living under a rock: a brutal exploration and survival game for 1-10 players, set in a procedurally-generated purgatory inspired by Viking culture. Across this time more than 15 thousand years have been spent playing Valheim based on a combined player time count, over 35 million hours of Valheim was watched on Twitch, it continues rising up as one of the best reviewed games on Steam (#39) and this is all still from a five-person team. The actual player-count seems to have now settled though from the 502,387 peak 10 days ago to it seeing a more regular player count of around 350,000.

today's howtos

  • Openstack RDO && KVM Hypervisor: Install intellij-idea on Fedora 33 via COPR Repository

    Procedure below works quite smoothly and eliminates any issues during similar manual setup which is available as well via `sudo dnf install openjfs`. First enable COPR Repository and perform install $ sudo dnf copr enable lkiesow/intellij-idea-community$ sudo dnf install intellij-idea-community During the very first run you will be given an option to install the most recent Oracle's JDK ( second snapshot )

  • How to Install a Specific Kernel Version in CentOS

    The Linux Kernel is the underlying core of all GNU/Linux distributions. The kernel, GNU standard programs, and additional programs and GUI on top of them make up a GNU/Linux operating system. CentOS is one such popular GNU/Linux operating system that comes under the RedHat family of Linux distributions. As the Linux kernel grows in size, more and more resources are spent in its development; mainly to incorporate support for newer hardware, amongst other things. However, there can be scenarios when an upgraded Kernel version is giving certain errors on a piece of hardware. There can be cases also when you want to test an older version of the kernel for compatibility purposes.

  • Tips for using tmux | Enable Sysadmin

    Prior to Red Hat Enterprise Linux 8, the screen command was included. In version 8, the decision was made to deprecate screen and use tmux instead. tmux is a terminal multiplexer which means that you’re able to have a process running, disconnect from the system, and then reconnect at a later time and from a different computer so that you can continue working in that process. An easy way to demonstrate this is to SSH to a remote system, start tmux, and then from inside of that, start a ping command to a remote system, disconnect from tmux, resume tmux, and you’ll see that the ping is still going.

  • Tips for using screen | Enable Sysadmin

    What happens when you’re connected to a remote system, using a long-running program, and then the connection drops? The odds are, at a minimum, you’re going to have to restart the program, and in a worst-case scenario, you’ll have data corruption. To help get around this, some programs run in a window shell on the system.

  • How to Install the YouTube Add-on in Kodi - LinuxBabe

    In a previous tutorial, we explained how you can install LibreELEC on a Raspberry Pi to set up a home media server and replace your smart TV OS. This tutorial is going to show you how to install the YouTube add-on and set up YouTube API in Kodi.

  • How to enable LUKS disk encryption with keyfile on Linux - nixCraft

    We can easily add a key file to LUKS disk encryption on Linux when running the cryptsetup command. A key file is used as the passphrase to unlock an encrypted volume. The passphrase allows Linux users to open encrypted disks utilizing a keyboard or over an ssh-based session.

  • How to use Bootable USB drive in VMware Player to install OS

    If you want to boot your Virtual Machine running on VMware Workstation Player using a bootable USB drive for the installation of Windows 10/8/7 or Linux (Ubuntu, Linux Mint, CentOS, etc.) operating system. Then here are the simple steps to follow… Whether it is Vmware Workstation Player or VirtualBox when it comes to installing an operating system for VM, most of the time we use ISO files. However, imagine you already have a bootable USB drive of some OS but not the ISO file for the same and you want to install it for a Virtual machine created in VMware. What will you do? The answer is straightforward; we will use the option of VMware to boot from Physical Disk, and here i.e. a USB disk drive attached to PC.

  • How to Dual Boot Ubuntu Linux and Windows 10 with BitLocker Encryption

    Laptops and desktops with Windows 10 Pro version come with BitLocker encryption enabled by default.

openSUSE Leap 15.3 Released for Public Beta Testing, Download Now

openSUSE Leap is openSUSE’s regular release that follows the development cycle of the SUSE Linux Enterprise operating system. As such, openSUSE Leap 15.3 beta comes with packages from the SUSE Linux Enterprise (SLE) 15 Service Pack 3 (SP3) release, including the Linux 5.3 kernel. This kernel version is maintained by SUSE and introduces support for AMD Navi GPUs, new IPv4 addresses, RISC-V improvements, and compatibility with the Intel SST (Speed Select Technology) used in Intel Xeon servers. Read more

openSUSE Leap 15.3 Reaches Beta Build Phase

openSUSE Leap has entered into the beta release phase today for its 15.3 minor version. This openSUSE Leap 15.3 version is a solidified release that focuses more on the building of the distribution rather than refreshing the distribution?s packages, but there are some significant changes to the distribution. Many of the packages will remain the same as those in openSUSE Leap 15.2 with a bit of hardware enablement and security backports. An updated version of glibc brings some Power10 support and the Xfce desktop users will have the new 4.16 version. The distribution also gains adds s390x architecture. The biggest change for this release is how Leap is built and its relationship with SUSE Linux Enterprise. Leap transitioned to a new way of building openSUSE Leap releases in the fall of 2020 through a prototype project called Jump. The Jump prototype was used as a proof of concept, but no longer exists; it did prove to work at building a distribution and bringing the code streams of both openSUSE Leap and SLE closer together. The proof of concept was implemented for building the release of openSUSE Leap 15.3 as seen in the beta release today. Building Leap on top of binary packages from SLE, which was part of the rationale for the Jump prototype, allows for easy development on a community release to be put into production on an enterprise release should the need arise. Read more Also: openSUSE Leap 15.3 Beta Begins - Phoronix