-
+35 +4Malicious Code in Linux xz Libraries Endangers SSH
Most users won't be affected by this malware, but if it had gone undetected for a few more months, everyone using Linux would have faced their biggest security disaster ever.
-
+35 +7KubeCon24: Red Hat OpenShift 4.15 Accelerates App Delivery
Grounded in Kubernetes 1.28 and CRI-O 1.28, OpenShift is Red Hat's platform for hybrid cloud and edge application development.
-
+36 +3NVD slowdown leaves thousands of vulns without analysis data
Security world reacts as NIST does a lot less of oft criticized, 'almost always thankless' work
-
+42 +2SUSE Upgrades Its Rancher Kubernetes Management Family
The new features are designed to empower platform engineering teams to offer developers self-service capabilities alongside bolstered support for AI workloads.
-
+33 +1Docker and Chainguard Join Forces to Deliver Secure Containers
Chainguard's secure Developer Images will now be available via Docker Hub as part of the Docker Verified Publisher program.
-
+37 +4Python Users: BIPClip Is After Your Bitcoin Wallet, Via PyPI
Python Package Index (PyPI) packages found hiding Bitcoin wallet hacking tools.
-
+33 +4Number of data breaches falls globally, triples in the US
The Global data breach statistics report comes from Surfshark, which counts every leaked email address used to register for online services as a separate user account.
-
+31 +2The S in IoT stands for security
All too many 'smart' devices are security stupid
-
+36 +2White House Warns Against Using Memory-Unsafe Languages
The White House's Office of the National Cyber Director urges developers to move to memory-safe languages such as Rust as soon as possible.
-
+30 +3Linux gets into the CVE security business
The Linux kernel developers are now issuing their own, more accurate Common Vulnerabilities and Exposures security bulletins.
-
+36 +2Shim vulnerability exposes most Linux systems to attack
This low-level software is the glue that enables Linux to run on Secure Boot PCs, and it has a nasty problem.
-
+32 +5The Linux Foundation and its partners are working on cryptography for the post-quantum world
Quantum computing is very much a mixed blessing.
-
+29 +13 million smart toothbrushes were just used in a DDoS attack. Really
What's next, malware-infected dental floss? But seriously: It's a reminder that even the smallest smart home devices can be a threat. Here's how to protect yourself.
-
+17 +1Three million malware-infected smart toothbrushes used in Swiss DDoS attacks — botnet causes millions of euros in damages
Dental IoT devices caused millions of Euros in damages for Swiss company, says report.
-
+36 +2Critical Security Hole in GNU C Library Opens Door to Root Access on Major Linux Distros
The glibc patch is out there, and if you're smart, you'll patch your systems with it soon.
-
+36 +5Your pacemaker and open source software
Using embedded medical technology, such as a pacemaker, defibrillator, or insulin pump? What's running inside is a complete mystery
-
+28 +4NoaBot: Another Mirai Botnet Strikes at Linux Devices
Akamai's team of security experts has discovered a new cryptomining campaign, dubbed NoaBot, leveraging the SSH protocol to spread its malware.
-
+34 +32023: The Year Open Source Security Supply Chain Grew Up
Open source security has always been important. We just pretended otherwise. We don't have that luxury of laziness anymore.
-
+48 +8The Terrapin Attack: A New Threat to SSH Integrity
Researchers at Ruhr University have found a significant vulnerability that targets the SSH protocol by manipulating the handshake process.
-
+56 +11Cyber security isn’t simple, but it could be
The biggest problem is a tendency to ignore problems you can’t see or haven’t looked for, says SecurityHQ
Submit a link
Start a discussion