Linux & Open Source News

In recent times, malicious actors have been found using innovative techniques to infiltrate systems and networks. One such development involves abusing the QEMU open-source hardware emulator as a tunneling tool...

Recently, the Ubuntu security team released updates aimed at mitigating libde265 vulnerabilities across several releases, including Ubuntu 23.10, Ubuntu 22.04 LTS, Ubuntu 20.04 LTS, Ubuntu 18.04, and Ubuntu 16.04. These...

In the realm of web development, it is critical to make sure our applications are secure. Recently, the Ubuntu security team addressed a number of vulnerabilities in PHPMailer, a widely...

Redis is an open-source, in-memory data structure store, often referred to as a key-value store. It is used as a database, cache, and message broker. Redis supports various data structures...

GNU binutils is a set of programming tools for creating and managing binary programs and object files on various computer architectures. It includes utilities like assembler, linker, and binary file...

The Sysdig Threat Research Team (TRT) discovered that a threat actor is leveraging an open-source network mapping tool called SSH-Snake for malicious activities. This tool utilizes SSH credentials found on...

VMware has issued a no-patch advisory urging users to take swift action by removing the deprecated Enhanced Authentication Plug-in (EAP). EAP was deprecated nearly three years ago, in March 2021,...

A new threat has emerged in the form of a Python script called SNS Sender, which malicious actors are utilizing to send bulk smishing messages through Amazon Web Services (AWS)...

Recently, Ubuntu has rolled out security updates addressing several Linux kernel vulnerabilities in Ubuntu 18.04. In this article, we will delve into the specifics of these vulnerabilities, along with their...

Ivanti Pulse Secure VPN appliances have recently been a target of several sophisticated attacks, highlighting the ongoing challenges in safeguarding critical IT infrastructure like network devices. UNC5221, a nation-state group,...

On February 10th, 2024, the Debian Project unveiled Debian 12.5, the fourth ISO update to the ongoing Debian GNU/Linux 12 “Bookworm” series. This release, which came 2 months after Debian...

Recently, several vulnerabilities have been discovered in the OpenJDK Java runtime, which may result in side channel attacks, leaking of sensitive data to log files, denial of service, or bypass...