Information Security newsfeeds from around the world in English and French. Find it all in one place since 2004. You'll find online the last 5 years.
Researchers discovered threat actors installing a Linux backdoor on compromised e-commerce servers after deploying a credit card skimmer into e-stores. Security researchers from Sansec Threat Research Team discovered a Linux backdoor during an investigation into the compromised of an e-commerce server with a software skimmer. The attackers initially conducted a reconnaissance phase by probing the […]
Continue ReadingSecurity researchers discovered that attackers are also deploying a Linux backdoor on compromised e-commerce servers after injecting a credit card skimmer into online shops’ websites. […] Source: leepingcomputer.com
Continue ReadingQihoo 360’s Netlab detailed a new evolving DDoS botnet called Abcbot with wormable capabilities that targets Linux systems. Researchers from Qihoo 360’s Netlab security team have spotted a new botnet, tracked as Abcbot, that targets Linux systems to launch distributed denial-of-service (DDoS) attacks. The security firm analyzed a total of six versions of the botnet […]
Continue ReadingBy Deeba Ahmed The malware is currently targeting Linux-embedded routers and IoT devices through botnets. This is a post from HackRead.com Read the original post: BotenaGo botnet malware targeting millions of IoT devices Source: hack read com
Continue ReadingBy Deeba Ahmed For your information, BusyBox is generally used by embedded devices like IoT products or ICS (industrial control systems). This is a post from HackRead.com Read the original post: 14 security vulnerabilities reported in BusyBox Linux utility Source: hack read com
Continue ReadingResearchers have identified a total of 14 new vulnerabilities in BusyBox that expose million of Unix-based devices to cyberattacks. Researchers from software development company JFrog and industrial cybersecurity firm Claroty have identified a total of 14 new critical vulnerabilities in BusyBox. The software is used by many network appliances and embedded devices with limited memory […]
Continue ReadingA critical heap-overflow vulnerability, tracked as CVE-2021-43267, in Linux Kernel can allow remote attackers to takeover vulnerable installs. A SentinelOne researcher discovered a critical remote code execution vulnerability, tracked as CVE-2021-43267, resides in the Transparent Inter Process Communication (TIPC) module of the Linux kernel. The flaw is a critical heap-overflow issue that could lead to […]
Continue ReadingMicrosoft announced today that the Chromium-based Edge web browser is now generally available on the Linux platform via the stable channel. […] Source: leepingcomputer.com
Continue ReadingDes cybercriminels non identifiés ont compromis plusieurs versions de la célèbre bibliothèque UAParser.js de JavaScript en injectant un code malveillant. Selon des statistiques publiées sur la page du développeur, de nombreux projets utilisent cette bibliothèque, téléchargée entre 6 et 8 millions de fois par semaine. Les malfaiteurs s’en sont pris à trois versions de la […]
Continue ReadingThe Hive ransomware operators have developed a new variant of their malware that can encrypt Linux and FreeBSD. ESET researchers discovered a new Hive ransomware variant that was specifically developed to encrypt Linux and FreeBSD. Researchers at the cybersecurity firm believe that the new encryptors are still under development. Both variants are written in Golang, […]
Continue Reading