Security News

Jack Wallen shows you just how easy it is to join an existing AlmaLinux server to an Active Directory domain via a web-based GUI. If you've begun deploying AlmaLinux into your data center or your cloud-hosted services, you might have a reason to join those servers to your existing Active Directory domain. To make this work, you'll need an instance of AlmaLinux, a running Active Directory Domain Controller, and a user with sudo privileges.

MariaDB announced the general availability of MariaDB Community Server 10.6, a major new release that brings significant advancements to the open source MariaDB community. MariaDB Community Server 10.6 adds important features for developers with JSON table functionality, frees users from expensive proprietary ties with expanded PL/SQL compatibility and adds powerful insurance for bad database days with atomic DDL that supports MariaDB's multiple storage engine architecture.

The worldwide server market grew 12% year over year to $20.9 billion during the first quarter of 2021, according to IDC. Worldwide server shipments grew 8.3% year over year to nearly 2.8 million units in 1Q21. Sales of volume servers were up 15.4% to $17.3 billion during the quarter, while midrange server sales declined 2.7% to $2.4 billion. "The first quarter 2021 server market performance benefited from a comparison against the most difficult quarter of last year's pandemic stricken year, but this fact doesn't tell a complete story," said Paul Maguranis, senior research analyst, Infrastructure Platforms and Technologies at IDC. "The considerable increase of server investments during the quarter were also buoyed by global economic tailwinds along with increased investments targeting the modernization of business applications, datacenter infrastructure, and IT operations."

Ukrainian law enforcement arrested cybercriminals associated with the Clop ransomware gang and shut down infrastructure used in attacks targeting victims worldwide since at least 2019. Cybersecurity company Intel 471 told BleepingComputer that the Ukrainian authorities arrested only individuals involved in laundering money for the Clop gang since its core members are likely out of harm's way in Russia.

CloudLinux announced UChecker, a free open source tool that scans Linux servers for vulnerable libraries that are outdated and being used by other applications. This provides detailed actionable information regarding which application is using which vulnerable library and needs to be updated, which helps improve the security awareness patching process.

Cisco's Talos team said 35% of incidents led back to Microsoft Exchange Server vulnerabilities reported early in 2021, but new ransomware families have been appearing to fill the Emotet hole, too. Cisco's Talos Intelligence Group has released its incident response trends report for spring 2021, and found that Microsoft Exchange Server vulnerabilities reported in early 2021 were the most detected incident over the past three months.

Intel has pushed out a raft of security advisories for June, bringing its total discovered "Potential vulnerabilities" for the year to date to 132, only a quarter of which were reported by external contributors and the company's bug bounty programme. "Today we released 29 security advisories addressing 73 vulnerabilities," Intel's Jerry Bryant said of the company's latest updates.

With that in mind, FileCloud 21.1, the latest version of the cloud-agnostic enterprise file sync, sharing and data governance platform, places speed and security at the heart of its new update. FileCloud 21.1 is 66% faster than the previous version, with increased efficiency and the ability to handle higher loads.

A newly identified piece of malware that targets Windows Server containers can execute code on the underlying node and then spread in the Kubernetes cluster, according to a warning from security researchers at Palo Alto Networks. Dubbed Siloscape, the heavily obfuscated malware was designed to install a backdoor into Kubernetes clusters, which can then be used to run malicious containers and perform various other nefarious activities.

Malicious actors are actively mass scanning the internet for vulnerable VMware vCenter servers that are unpatched against a critical remote code execution flaw, which the company addressed late last month. "Mass scanning activity detected from 104.40.252.159 checking for VMware vSphere hosts vulnerable to remote code execution," tweeted Troy Mursch, chief research officer at Bad Packets.