Language Selection

English French German Italian Portuguese Spanish

Security

Security Leftovers

Filed under
Security
  • Friday's security updates
  • At pwn2Own, Chrome, Flash and Other Key Tools Proved Vulnerable
  • Motor Vehicles Increasingly Vulnerable to Remote Exploits

    As previously reported by the media in and after July 2015, security researchers evaluating automotive cybersecurity were able to demonstrate remote exploits of motor vehicles. The analysis demonstrated the researchers could gain significant control over vehicle functions remotely by exploiting wireless communications vulnerabilities. While the identified vulnerabilities have been addressed, it is important that consumers and manufacturers are aware of the possible threats and how an attacker may seek to remotely exploit vulnerabilities in the future. Third party aftermarket devices with Internet or cellular access plugged into diagnostics ports could also introduce wireless vulnerabilities.

  • Malvertising hits BBC, Newsweek, NYT and MSN

    Links to malware inside online advertising bypassed the security systems of the advertising serving companies and distributed ransomware to unsuspecting ‘link clickers’.

    Earlier this week major websites including BBC, Newsweek, New York Times and MSN ‘hosted’ malvertising on their sites that has been credited as the largest of attack of its type for two years. Previously Google’s DoubleClick and Zedo ad servers were ‘infected’ and YouTube, Amazon and Yahoo websites used advertisements served from them.

    Although ad serving networks try to filter out malicious ones, occasionally altered ones’ slip in. On a high-traffic site, this means a large pool of potential victims. Websites that serve the ads are usually unaware of the problem.

    AppNexus, one of the ad servers said it has an anti-malware detection system called Sherlock it uses to screen ads and also uses a filtering product from a third-party vendor. "We devote considerable financial resources to safeguarding our customers. Unfortunately, bad actors also invest considerably in developing new forms of malware,” said Josh Zeitz, vice president of communications.

  • Security Researcher Goes Missing After Investigating Bangladesh Bank Cyber-Heist

    Tanvir Hassan Zoha, 34, security researcher, has gone missing just days after accusing Bangladesh's central bank officials of negligence, which facilitated the theft of over $81 million from the country's oversea accounts.

Linux Kernel 3.12.57 LTS Out Now with ALSA, EFI, and Xen Improvements, Bugfixes

Filed under
Linux
Security

On March 18, 2016, kernel developer Jiri Slaby announced the release of the fifty-seventh maintenance build of the long-term supported Linux 3.12 kernel series.

Read more

Security Leftovers

Filed under
Security
  • Security updates for Thursday
  • Locky Ransomware Spreading in Massive Spam Attack

    Trustwave said over the last seven days, malware-laced spam has represented 18 percent of total spam collected in its honeypots. Trustwave said malware-infected spam typically represent less than 2 percent of total spam. The recent increase to 18 percent is almost entirely traced to ransomware JavaScript downloaders. Campaigns aren’t continuous, Trustwave reported, but are delivered in hour-long bursts.

  • Considering Docker? Consider Security First

    Containers started making a big splash in IT and dev operations starting in 2014. The benefits of flexibility and go-live times, among many others, are almost undeniable. But large enterprises considering using a container platform for development or IT operations should pause and consider security first.

Security Leftovers

Filed under
Security
  • Big-name sites hit by rash of malicious ads spreading crypto ransomware [Updated]

    Mainstream websites, including those published by The New York Times, the BBC, MSN, and AOL, are falling victim to a new rash of malicious ads that attempt to surreptitiously install crypto ransomware and other malware on the computers of unsuspecting visitors, security firms warned.

    The tainted ads may have exposed tens of thousands of people over the past 24 hours alone, according to a blog post published Monday by Trend Micro. The new campaign started last week when "Angler," a toolkit that sells exploits for Adobe Flash, Microsoft Silverlight, and other widely used Internet software, started pushing laced banner ads through a compromised ad network.

    According to a separate blog post from Trustwave's SpiderLabs group, one JSON-based file being served in the ads has more than 12,000 lines of heavily obfuscated code. When researchers deciphered the code, they discovered it enumerated a long list of security products and tools it avoided in an attempt to remain undetected.

  • VMware fixes XSS flaws in vRealize for Linux

    VMware patched two cross-site scripting issues in several editions of its vRealize cloud software. These flaws could be exploited in stored XSS attacks and could result in the user's workstation being compromised.

  • VMware patches severe XSS flaws in vRealize software

    VMware has patched two serious vulnerabilities in the firm's vRealize software which could lead to remote code execution and the compromise of business workstations.

    In a security advisory posted on Tuesday, the Palo Alto, California-based firm said the "important" vulnerabilities are found within the VMware vRealize Automation and VMware vRealize Business Advanced and Enterprise software platforms.

  • Get ready to patch Git servers, clients – nasty-looking bugs surface

    A chap who found two serious security bugs in Git servers and clients has urged people to patch their software.

    The flaws are present in Git including the 2.x, 1.9 and 1.7 branches, meaning the vulnerabilities have been lurking in the open-source version control tool for years.

    It is possible these two programming blunders can be potentially exploited to corrupt memory or execute malicious code on remote servers and clients. To do so, an attacker would have to craft a Git repository with a tree of files that have extremely long filenames, and then push the repo to a vulnerable server or let a vulnerable client clone it from the internet.

Ubuntu 15.10 for Raspberry Pi 2 Kernel Patched by Canonical to Fix Seven Issues

Filed under
Security

On March 15, 2016, we reported on the fact that Canonical published several new Ubuntu Security Notices to inform the community about important kernel updates for the Ubuntu 12.04 LTS, Ubuntu 14.04 LTS, and Ubuntu 15.10 operating systems.

Read more

Thunderbird’s defective method of enabling anti-virus software to scan incoming POP3 e-mail messages

Filed under
Security

Thunderbird’s method of enabling anti-virus software to scan incoming e-mail messages is explained in the mozillaZine article 'Download each e-mail to a separate file before adding to Inbox' and in Mozilla bug report no. 116443 (the bug report that resulted in the functionality being implemented).

Chromebook/Google/Gentoo Security

Filed under
Gentoo
Google
Security
  • Google has doubled its bounty for a Chromebook hack to $100,000

    Google doubled the bounty it will pay for a successful exploit of its Chromebook laptop to $100,000, sweetening the pot in hopes of drawing more attention from security researchers.

    The larger reward is intended for someone who finds a persistent compromise of a Chromebook in guest mode, according to Google's security blog on Monday.

  • Google's Bug Bounty for a Chromebook Hack Rises to $100,000

    We've reported a few times on bug bounties--cash prizes offered by open source communities to anyone who finds key software bugs--ranging from bounties offered by Google (for the Chrome browser) and Mozilla. This open method of discovering security vulnerabilities has been embraced at Google, especially. In fact, Google has offered up as much as $1 million to people who identify key vulnerabilities in the Chrome browser.

Security Leftovers

Filed under
Security

Security Leftovers

Filed under
Security
  • Monday's security advisories
  • Building a Jenkins Security Realm

    Last week I spent a good while on writing a new security realm for KDE's Jenkins setups. The result of my tireless java brewing is that the Jenkins installation of KDE neon now uses KDE's Phabricator setup to authenticate users and manage permissions via OAuth.

  • The Great Linux Mint Heist: the Aftermath

    In a shocking move, cyber criminals recently hacked the Linux Mint Web server and used it to launch an attack against the popular distro's user base.

  • These Are the Best System Rescue Tools After a Malware Attack

    System rescue tools provided by antivirus makers are often used to clean infected systems after the main antivirus software detects infections.

    Most antivirus makers bundle this functionality in their main products, but a few offer more specialized tools that also repair damaged files, attempting to restore the system to its earlier working point as much as possible.

    Only five of such tools are currently available on the market as free tools. They are AVG Rescue CD, Avira EU-Clean, Bitdefender Rescue CD, ESET SysRescue, and Kaspersky Virus Removal Tool.

  • Documents with malicious macros deliver fileless malware to financial-transaction systems

    Spammed Word documents with malicious macros have become a popular method of infecting computers over the past few months. Attackers are now taking it one step further by using such documents to deliver fileless malware that gets loaded directly in the computer's memory.

    Security researchers from Palo Alto Networks analyzed a recent attack campaign that pushed spam emails with malicious Word documents to business email addresses from the U.S., Canada and Europe.

Canonical Releases Major Kernel Update for Ubuntu 14.04 LTS, Patches 13 Issues

Filed under
Security
Ubuntu

We reported on March 14 that Canonical published two new Ubuntu Security Notices with detailed information on multiple Linux kernel vulnerabilities patched for Ubuntu 12.04 LTS (Precise Pangolin) and Ubuntu 15.10 (Wily Werewolf) operating systems.

Read more

Syndicate content

More in Tux Machines

Games for GNU/Linux

  • Atom Zombie Smasher is being updated, Linux version to finally come to Steam
    Atom Zombie Smasher came to Linux a long time ago, but the Linux version never did make it to Steam. It is now being updated by Ethan Lee and the Linux version will be put onto Steam.
  • The Curious Expedition to release in full on September 2nd with Linux support
    The Curious Expedition is a roguelike expedition simulation set in the late 19th century, it is soon to leave Early Access and has full Linux support. It has been on Linux since the early days, so it's one title that has supported us for quite a while. I have never tried it, but the reviews seem pretty good!
  • Speculation: It's looking like Rocket League may finally arrive on Linux in September
    Rocket League is way overdue, we all know that, but honestly I am fully expecting it to arrive with the patch due in September named the 'Rumble Update'. This update will come with a bunch of stuff including a new game mode. I'm speculating of course, so don't take this as solid confirmation of anything. The evidence is starting to come together though and I will be extremely surprised if Linux isn't released with the Rumble update next month. Every time Rocket League is updated on SteamDB, the Linux depot is now also updated and this has been true for about two weeks now. This is the single most activity the Linux side of RL has ever seen being pushed into branches on Steam.

Linux-compatible Hardware

  • EOMA68 modular laptop/desktop raises more than $150 thousand through crowdfunding, here’s what’s next
    The EOMA68 project is an effort to design a system of modular computing devices that use interchangeable PC cards. The processor, memory, storage, and operating system are all on a card that you can pop out of a laptop or desktop and replace with a different card. Theoretically any type of processor and operating system can run from an EOMA68 card, but the project is also designed to support free and open source software, which restricts some of the hardware that can be used… so the when founder Luke Kenneth Casson Leighton took to Crowd Supply to raise money to begin production of the first PC cards and laptop and desktop shells, the focus is on first-gen cards with low-power Allwinner A20 processors, 2GB of RAM, and 8GB of storage.
  • Seeed Studio’s ReSpeaker Speaks All the Voice Recognition Languages
    Seeed Studio recently launched its third Kickstarter campaign: ReSpeaker, an open hardware voice interface. After their previous Kickstarted IoT hardware, such as the RePhone, mostly focused on connectivity, the electronics manufacturer from Shenzhen now tackles another highly contested area of IoT: Voice recognition.
  • Open-source Piton CPU can scale into million-core system
  • Open Source SNES to USB Converter Lets You Emulate Legally
    [Andrew Milkovich] was inspired build his own Super Nintendo cartridge reader based on a device we covered an eternity (in internet years) ago. The device mounts a real cartridge as a USB mass storage device, allowing you to play your games using an emulator directly from the cart.

The Importance of BSD

The Berkeley Software Distribution (BSD) is a Unix operating system developed by the Computer Systems Research Group (CSRG) of the University of California, Berkeley. Read more

Ubuntu 16.10 Unity and Ubuntu MATE

  • Ubuntu 16.10 Unity 8 / Mir - Current State
  • Bytemark sponsor Ubuntu MATE
    A couple of weeks ago the Bytemark Managing Director, Matthew Bloch, contacted the Ubuntu MATE team to offer free hosting for the project. As of August 18th 2016 all the Ubuntu MATE infrastucture is hosted on Bytemark Cloud Servers.
  • Ubuntu MATE 16.10 Beta 1
    We are underwhelmed to announce, quite possibly, our most uninteresting beta release E-V-E-R! ;-) This beta release is all about the plumbing that transitions Ubuntu MATE to GTK 3.20. It really isn’t very interesting from an end-users perspective.