| jeffv via plug on 13 May 2022 08:48:07 -0700 |
[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]
| [PLUG] BPFdoor malware, Ubuntu kernel, Zyxel patch |
BPFdoor: Stealthy Linux malware bypasses firewalls for remote access https://www.bleepingcomputer.com/news/security/bpfdoor-stealthy-linux-malware-bypasses-firewalls-for-remote-access/BPFdoor is a Linux/Unix backdoor that allows threat actors to remotely connect to a Linux shell to gain complete access to a compromised device.
The malware does not need to open ports, it can’t be stopped by firewalls, and can respond to commands from any IP address on the web
New Ubuntu Linux Kernel Security Updates Patch 17 Vulnerabilities https://9to5linux.com/new-ubuntu-linux-kernel-security-updates-patch-17-vulnerabilities Serious Security: Learning from curl’s latest bug update https://9to5linux.com/new-ubuntu-linux-kernel-security-updates-patch-17-vulnerabilities How to Run a Linux Command Without Saving It in History https://www.tecmint.com/run-linux-command-without-saving-in-history/Zyxel silently patches command-injection vulnerability with 9.8 severity rating
https://arstechnica.com/information-technology/2022/05/zyxel-silently-patches-command-injection-vulnerability-with-9-8-severity-rating/CVE-2022-30525 is of high value to threat actors because it’s easy to weaponize, requires no authentication, and can be exploited in the default setup of vulnerable devices.
NSA Says ‘No Backdoor’ for Spies in New US Encryption Scheme https://www.bloomberg.com/news/articles/2022-05-13/nsa-says-no-backdoor-in-new-encryption-scheme-for-us-tech "Would we lie to you?" ___________________________________________________________________________ Philadelphia Linux Users Group -- http://www.phillylinux.org Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce General Discussion -- http://lists.phillylinux.org/mailman/listinfo/plug