Security: Updates, ESET Post Turned to FUD, New Microsoft-Connected FUD, and SUSE CaaS Platform Patched
-
Security updates for Friday
-
Old and new OpenSSH backdoors threaten Linux servers [Ed: ESET is spreading/reusing/repurposing FUD against OpenSSH of the OpenBSD project. SSH itself is secure, but because some malicious actors make poisoned binaries with back doors we're supposed to fear; supply chains matter.]
Nearly five years ago, ESET researchers helped to disrupt a 25 thousand-strong botnet of Linux machines that were saddled with an OpenSSH-based backdoor and credential stealer named Ebury. The attackers wielding it first performed a check if other SSH backdoors are present at the targeted system before deploying the malware.
This spurred the researchers to search for and analyze these type of (server-side OpenSSH) backdoors.
“Malicious OpenSSH binaries are quite common and have features that help us detect them among legitimate OpenSSH binaries. While, as soon as we got them, we used the samples collected to improve our detection, we only began sorting and analyzing them in 2018. Surprisingly, we discovered many new backdoor families that had never been documented before,” they noted in a recently released report detailing nine previously documented and 12 new OpenSSH malware families.
-
Feral Interactive Bringing DiRT 4 to Linux in 2019, Chrome 71 Blocks Ads on Abusive Sites, New Linux Malware Families Discovered, The Linux Foundation Launches the Automated Compliance Tooling Project, and GNU Guix and GuixSD 0.16.0 Released
Cyber-security company ESET has discovered 21 "new" Linux malware families, and all of them "operate in the same manner, as trojanized versions of the OpenSSH client". ZDNet reports that "They are developed as second-stage tools to be deployed in more complex 'botnet' schemes. Attackers would compromise a Linux system, usually a server, and then replace the legitimate OpenSSH installation with one of the trojanized versions. ESET said that '18 out of the 21 families featured a credential-stealing feature, making it possible to steal passwords and/or keys' and '17 out of the 21 families featured a backdoor mode, allowing the attacker a stealthy and persistent way to connect back to the compromised machine.'"
-
Visibility is the key to prioritizing open source vulnerability remediations [Ed: TechRadar entertains anti-FOSS firm whose sole contribution is FUD because it tries to sell some 'solution'. The author writes about his own firm that also collaborates with Microsoft on this FUD.]
-
SUSE CaaS Platform Updated to Address Kubernetes Vulnerability
For an open source project of its size (both in terms of code and of prevalence of adoption), Kubernetes has been surprisingly free of security vulnerabilities. Its perfect record has come to an end, though, with the project’s disclosure on December 3, 2018 of a security vulnerability in all previous versions of Kubernetes, and therefore, of SUSE CaaS Platform.
- Login or register to post comments
- Printer-friendly version
- 3169 reads
- PDF version
More in Tux Machines
- Highlights
- Front Page
- Latest Headlines
- Archive
- Recent comments
- All-Time Popular Stories
- Hot Topics
- New Members
digiKam 7.7.0 is releasedAfter three months of active maintenance and another bug triage, the digiKam team is proud to present version 7.7.0 of its open source digital photo manager. See below the list of most important features coming with this release. |
Dilution and Misuse of the "Linux" Brand
|
Samsung, Red Hat to Work on Linux Drivers for Future TechThe metaverse is expected to uproot system design as we know it, and Samsung is one of many hardware vendors re-imagining data center infrastructure in preparation for a parallel 3D world. Samsung is working on new memory technologies that provide faster bandwidth inside hardware for data to travel between CPUs, storage and other computing resources. The company also announced it was partnering with Red Hat to ensure these technologies have Linux compatibility. |
today's howtos
|
Rogue binaries spun as a "Linux" problem
Researchers uncover 21 Linux malware families