Collaborate Disseminate
The US-CERT today issued advisory warning users of a new dangerous 17-year-old remote code execution vulnerability affecting the PPP daemon (pppd) software that comes installed on almost all Linux based operating systems, as well as powers the firmware… Continue reading Critical PPP Daemon Flaw Opens Most Linux Systems to Remote Hackers
Joe Vennix of Apple security has found another significant vulnerability in sudo utility that under a specific configuration could allow low privileged users or malicious programs to execute arbitrary commands with administrative (‘root’) privileges on… Continue reading Sudo Bug Lets Non-Privileged Linux and macOS Users Run Commands as Root
If you are running a KDE desktop environment on your Linux operating system, you need to be extra careful and avoid downloading any “.desktop” or “.directory” file for a while.
A cybersecurity researcher has disclosed an unpatched zero-day vulnerabili… Continue reading KDE Linux Desktops Could Get Hacked Without Even Opening Malicious Files
Cybersecurity researchers have discovered a new variant of WatchBog, a Linux-based cryptocurrency mining malware botnet, which now also includes a module to scan the Internet for Windows RDP servers vulnerable to the Bluekeep flaw.
BlueKeep is a highl… Continue reading Linux Botnet Adding BlueKeep-Flawed Windows RDP Servers to Its Target List
Linux users, beware!
If you haven’t recently updated your Linux operating system, especially the command-line text editor utility, do not even try to view the content of a file using Vim or Neovim.
Security researcher Armin Razmjou recently discovere… Continue reading Your Linux Can Get Hacked Just by Opening a File in Vim or Neovim Editor
Just in time…
Some cybersecurity experts this week arguing over Twitter in favor of not using HTTPS and suggesting software developers to only rely on signature-based package verification, just because APT on Linux also does the same.
Ironically, a s… Continue reading Critical RCE Flaw in Linux APT Allows Remote Attackers to Hack Systems
Hold tight, this may blow your mind…
A low-privileged user account on most Linux operating systems with UID value anything greater than 2147483647 can execute any systemctl command unauthorizedly—thanks to a newly discovered vulnerability.
The repor… Continue reading Warning! Unprivileged Linux Users With UID > INT_MAX Can Execute Any Command
An Indian security researcher has discovered a highly critical flaw in X.Org Server package that impacts OpenBSD and most Linux distributions, including Debian, Ubuntu, CentOS, Red Hat, and Fedora.
Xorg X server is a popular open-source implementation… Continue reading New Privilege Escalation Flaw Affects Most Linux Distributions
Linux and BSD systems face a critical risk as a Xorg vulnerability has been found. This is the main display server which is used to provide the graphics engine. The issue is tracked in the CVE-2018-14665 advisory and is related…Read more
The post CVE… Continue reading CVE-2018-14665: Xorg Vulnerability Affects Both Linux and BSD Systems
A new serious problem has been discovered to affect the Linux operating system, the bug is known as the Linux Mutagen Astronomy vulnerability and assigned the CVE-2018-14634 advisory. The security team that reported it has posted a proof-of-concept cod… Continue reading CVE-2018-14634: Linux Mutagen Astronomy Vulnerability Affects RHEL and Cent OS Distros