Security News

FreakOut malware exploits critical bugs to infect Linux hosts
2021-01-19 07:48

An active malicious campaign is currently targeting Linux devices running software with critical vulnerabilities that is powering network-attached storage devices or for developing web applications and portals. The purpose is to infect machines with vulnerable versions of the popular TerraMaster operating system, the Zend Framework, or Liferay Portal with FreakOut malware, which can help deploy a wide variety of cyberattacks.

FreakOut! Ongoing Botnet Attack Exploiting Recent Linux Vulnerabilities
2021-01-19 05:40

An ongoing malware campaign has been found exploiting recently disclosed vulnerabilities in network-attached storage devices running on Linux systems to co-opt the machines into an IRC botnet for launching distributed denial-of-service attacks and mining Monero cryptocurrency. Regardless of the vulnerabilities exploited, the end goal of the attacker appears to be to download and execute a Python script named "Out.py" using Python 2, which reached end-of-life last year - implying that the threat actor is banking on the possibility that that victim devices have this deprecated version installed.

IAR Build Tools for Linux now supported by Parasoft C/C++test
2021-01-19 01:15

Parasoft announced its C/C++test update to support IAR Systems' build tools for Linux for Arm. IAR Build Tools for Linux inspired the update of Parasoft's unified testing solution for C/C++test software development.

Microsoft Defender for Endpoint on Linux Goes Live
2021-01-12 17:10

Microsoft on Monday announced that Microsoft Defender for Endpoint on Linux now provides endpoint detection and response capabilities to all users. Initially available on Windows only, Microsoft Defender for Endpoint has received support for all major platforms, and is now available on macOS, Linux, Android, and iOS, the Redmond, Wash.

Microsoft's beefed-up take on Linux server security has hit general availability
2021-01-12 13:00

After a few months in preview, Microsoft has made Defender Endpoint Detection and Response generally available for Linux servers. Microsoft has extended its Defender product over multiple platforms throughout the last year or so, having shaved the "Windows" prefix from the system.

Microsoft releases Linux endpoint detection and response features
2021-01-11 16:40

Microsoft announced today that Microsoft Defender for Endpoint's detection and response capabilities are now generally available on Linux servers. Microsoft Defender for Endpoint was first showcased during the Ignite 2019 conference, entered public preview in February 2020, and it was made generally available in June 2020.

How to remove background microphone noise in Windows, Mac, Linux
2021-01-09 14:47

The good news is that software exists that can automatically mute your microphone while typing or suppress background noise so that others are not annoyed by the sound of your keyboard. If you commonly talk while typing, are using Windows, or want to suppress all background noise, background noise suppression apps are a better solution.

NVIDIA fixes high severity flaws affecting Windows, Linux devices
2021-01-08 08:11

NVIDIA has released security updates to address six security vulnerabilities found in Windows and Linux GPU display drivers, as well as ten additional flaws affecting the NVIDIA Virtual GPU management software. NVIDIA has addressed the security issues in all affected software products and platforms with the exception of those tracked as CVE‑2021‑1052, CVE‑2021‑1053, and CVE‑2021‑1056 impacting the Linux GPU Display Driver for Tesla GPUs which will receive an update driver version starting with January 18, 2021.

How to quickly check to see if your Linux server is under a DoS attack from a single IP address
2021-01-07 19:03

Jack Wallen shows you an easy way to determine if your Linux server is under a DDoS attack and how to quickly stop it. How? In this piece I'm going to show you a few commands that can help you discern if your server is being hit by a denial of service attack, which comes from a single IP address and attempts to cripple a website to render its server inaccessible.

Ezuri Memory Loader Abused in Linux Attacks
2021-01-07 19:01

Security researchers at AT&T's Alien Labs have identified multiple malware attacks leveraging the Ezuri memory loader to execute payloads without writing them to disk. Executed directly in memory, without leaving traces on disk, fileless malware is commonly used in attacks targeting Windows systems, but isn't often seen in malware attacks targeting Linux.