Tux Machines

Security Leftovers

Posted by Roy Schestowitz on Jan 19, 2023,

updated Jan 19, 2023

=> Videos and Shows: LTS vs Rolling, FreeBSD, ps Command, The Linux Link Tech Show (TLLTS), and BSD Now | New Steam Games with Native Linux Clients - 2023-01-18 Edition with Farlanders, Zombie Admin

Security Analysis of Threema

=> ↺ Security Analysis of Threema

The company is performing the usual denials and deflections...

Critical RCE vulnerabilities found in git (CVE-2022-41903, CVE-2022-23251) - Help Net Security

=> ↺ Critical RCE vulnerabilities found in git (CVE-2022-41903, CVE-2022-23251) - Help Net Security

A source code audit has revealed two critical vulnerabilities affecting git, the popular distributed version control system for collaborative software development.

BeyondTrust Expands Privilege Management Capabilities with Support for Linux Desktops and Azure Active Directory (AD) [Ed: BeyondTrust wanting to associate with Azure??? Azure is not to be trusted.]

=> ↺ BeyondTrust Expands Privilege Management Capabilities with Support for Linux Desktops and Azure Active Directory (AD) | ↺ Azure is not to be trusted

Lawyers slam SEC for 'blatant fishing expedition' after Exchange mega-attack [iophk: Windows TCO]

=> ↺ Lawyers slam SEC for 'blatant fishing expedition' after Exchange mega-attack

The data theft in question is the now-infamous Microsoft Exchange attack in which Hafnium exploited four zero-day vulnerabilities in the email platform to steal data from US-based defense contractors, law firms, and infectious disease researchers.

Linux Malware Hit Record Highs in 2022 [Ed: Parroting claims from a company that has a rather obvious conflict of interest]

=> ↺ Linux Malware Hit Record Highs in 2022

As more devices and services migtate to Linux, malware has become more and more prevalent on the OS. Despite Linux’s reputation as the most secure operating system, it is not immune to malware.

In fact, Linux malware has become increasingly prevalent in recent years as more and more devices and servers run on Linux operating systems.

According to data analysed by Atlas VPN based on malware threat statistics from AV-ATLAS, new Linux malware threats hit record numbers in 2022, increasing by 50% to 1.9 million.

TuxCare Unveils OEM Partner Program for Best-in-Class Vulnerability Patching | Business Wire

=> ↺ TuxCare Unveils OEM Partner Program for Best-in-Class Vulnerability Patching | Business Wire

TuxCare, a global innovator in enterprise-grade cybersecurity for Linux, today announced the launch of its TuxCare OEM Partner Program that aims to easily arm OEM partners with its award-winning KernelCare Enterprise and LibCare solutions.

The SSL Certificate Issuer Field is a Lie

=> ↺ The SSL Certificate Issuer Field is a Lie

A surprisingly hard, and widely misunderstood, problem with SSL certificates is figuring out what organization (called a certificate authority, or CA) issued a certificate. This information is useful for several reasons: [...]

=> gemini.tuxmachines.org