[PLUG] unpatched DNS bug, SSH hardening, network switches vuln

jeffv via plug on 3 May 2022 12:40:49 -0700

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

[PLUG] unpatched DNS bug, SSH hardening, network switches vuln

From: jeffv via plug <plug@lists.phillylinux.org>
To: Philadelphia Linux User's Group Discussion List <plug@lists.phillylinux.org>
Subject: [PLUG] unpatched DNS bug, SSH hardening, network switches vuln
Date: Tue, 3 May 2022 15:40:43 -0400
Authentication-results: smtp03.aqua.bos.sync.lan smtp.user=jeffv@op.net; auth=pass (LOGIN)
Dkim-signature: v=1; a=rsa-sha1; d=op.net; s=20180222; c=relaxed/simple; q=dns/txt; i=@op.net; t=1651606844; h=From:Subject:Date:To:MIME-Version:Content-Type; bh=exp2yKa6NARJ5Ao+AlG/tCVZXUE=; b=ZmK9gZIo0Sm0bDqQe1cqQGgE0JRLBGKX1/ShrqTGwKSqD7hQiDM+UWfKNacvEQSa IWatyJWaWHFSrD10ZlSvBYNk9d6WExKAiNb5R1JWIHgi7jH3qF5Cm7eVpErgPDeJ a2p5yZmlEOL7p464DDQ6VE60iiDuoe8Zdmm1KCzScwal6JDLINtl6Iaoy+Lk9OJB 8X4IabVCyROfdfr+l+WV1b8MUKfZNQ5Orx8HSIVH2v/kaRNzJK23mZCiTotGuNA/ mdHS/Od6qYQieV09X+5XiGeTb+LtoZ67VAptJOJDZVG4r1CtWWxLjqicMsh+Wg3u 8OreJVvPXD8mfzd0SttCgA==;
Reply-to: jeffv <jeffv@op.net>
Sender: "plug" <plug-bounces@lists.phillylinux.org>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101 Thunderbird/91.8.1


Unpatched DNS bug affects millions of routers and IoT devices

https://www.bleepingcomputer.com/news/security/unpatched-dns-bug-affects-millions-of-routers-and-iot-devices/

The library uClibc and its fork from the OpenWRT team, uClibc-ng. Bothvariants are widely used by major vendors like Netgear, Axis, andLinksys, as well as Linux distributions suitable for embedded applications.




OpenSSH Security Hardening Guide for Linux

https://www.howtoforge.com/openssh-security-hardening-guide-for-linux/



Aruba and Avaya network switches are vulnerable to RCE attacks

https://www.bleepingcomputer.com/news/security/aruba-and-avaya-network-switches-are-vulnerable-to-rce-attacks/




Botnet that hid for 18 months boasted some of the coolest tradecraft ever

https://arstechnica.com/information-technology/2022/05/how-hackers-used-smarts-and-a-novel-iot-botnet-to-plunder-email-for-months/




Google SMTP relay service abused for sending phishing emails

https://www.bleepingcomputer.com/news/security/google-smtp-relay-service-abused-for-sending-phishing-emails/





Some hamsters are extremely susceptible to COVID-19

https://www.sciencenews.org/article/covid-coronavirus-hamsters-susceptible-transmission-humans
___________________________________________________________________________
Philadelphia Linux Users Group         --        http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion  --   http://lists.phillylinux.org/mailman/listinfo/plug

Prev by Date: [PLUG] Android virtualization, Chrome hack, kernel NTFS driver
Next by Date: Re: [PLUG] [plug-announce] Wed May 4 - PLUG Central - "General Linux Discussion" (7pm EDT online)
Previous by thread: [PLUG] Android virtualization, Chrome hack, kernel NTFS driver
Next by thread: Re: [PLUG] Book: Modern Mainframe Development
Index(es):
- Date
- Thread