Beware- FontOnLake Rootkit Malware Attacking Linux Systems

By Deeba Ahmed According to ESET's researchers, components of FontOnLake malware are divided into three groups: Trojamized app, Rootkit, and Backdoor. This is a post from HackRead.com Read the original post: Beware- FontOnLake Rootkit Malware Attacking Linux Systems...

MGASA-2021-0430 Updated libarchive packages fix security vulnerability

Fix handling of symbolic link ACLs on Linux. Never follow symlinks when setting file flags on Linux. Do not follow symlinks when processing the fixup list...

OESA-2021-1328 glibc security update

The GNU C Library project provides the core libraries for the GNU system and GNU/Linux systems, as well as many other systems that use Linux as the kernel. These libraries provide critical APIs including ISO C11, POSIX.1-2008, BSD, OS-specific APIs and more. These APIs include such foundational...

New variant of PRISM Backdoor ‘WaterDrop’ targets Linux systems

By Deeba Ahmed According to researchers, the PRISM backdoor has been on their radar for more than 3.5 years. This is a post from HackRead.com Read the original post: New variant of PRISM Backdoor WaterDrop targets Linux systems...

CVE-2021-2443

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that is affected is Prior to 6.1.24. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromis...

PwnLnX - An Advanced Multi-Threaded, Multi-Client Python Reverse Shell For Hacking Linux Systems

An advanced multi-threaded , multi-client python reverse shell for hacking linux systems. There's still more work to do so feel free to help out with the development. Disclaimer : This reverse shell should only be used in the lawful, remote administration of authorized systems. Accessing a comput...

Tor-Based Botnet Malware Targets Linux Systems, Abuses Cloud Management Tools

We found a botnet malware campaign targeting Linux systems, abusing the Tor network for proxies, and exploiting cloud infrastructure management tools for intrusion...

Cohesity DataPlatform 信任管理问题漏洞

Cohesity DataPlatform is a suite of platforms from Cohesity for managing ancillary data and applications. The platform is primarily used for data backup, instant recovery, and more. A security vulnerability exists in Cohesity DataPlatform version 6.3 prior 6.3.1g, 6.4 up to 6.4.1c and 6.5.1 throu...

Chinese hackers using RedXOR backdoor against Linux systems

By Deeba Ahmed RedXOR malware can steal data, gather system information such as the MAC address, username, clock speed, distribution, and kernel version, etc. This is a post from HackRead.com Read the original post: Chinese hackers using RedXOR backdoor against Linux systems...

Clusterlabs Crmsh Security Vulnerability

Clusterlabs Crmsh is a command line software for GNU/Linux systems for high availability cluster management from the ClusterLabs Clusterlabs team. A security vulnerability exists in ClusterLabs crmsh 4.2.1, which can be exploited by an attacker to elevate privileges...

Wormable Gitpaste-12 Botnet Returns to Target Linux Servers, IoT Devices

A new wormable botnet that spreads via GitHub and Pastebin to install cryptocurrency miners and backdoors on target systems has returned with expanded capabilities to compromise web applications, IP cameras, and routers. Early last month, researchers from Juniper Threat Labs documented a...

RansomEXX Trojan attacks Linux systems

We recently discovered a new file-encrypting Trojan built as an ELF executable and intended to encrypt data on machines controlled by Linux-based operating systems. After the initial analysis we noticed similarities in the code of the Trojan, the text of the ransom notes and the general approach ...

FBI and NSA expose Russian State hacking tool for Linux systems

By Sudais Asif Dubbed Drovorub by the agencies; the malware hacking tool is capable of spying on Linux systems. This is a post from HackRead.com Read the original post: FBI and NSA expose Russian State hacking tool for Linux systems...

metasploit-framework

This is an offensive tool for Metasploit Framework. It is a collection of modules and tools for exploiting vulnerabilities in various systems and applications. The repository contains a wide range of modules, including exploits, payloads, and post-exploitation tools. The primary target of this to...

Unspecified Vulnerability in IBM DB2

IBM DB2 is a set of relational database management system from IBM in the United States. The main execution environments for this system are UNIX, Linux, IBMi, z/OS, and Windows server versions. There is a security vulnerability in IBM DB2. A local attacker can exploit the vulnerability by sendin...

Update Rollup 13 for System Center 2012 R2 Operations Manager

Update Rollup 13 for System Center 2012 R2 Operations Manager Introduction This article describes the issues that are fixed in Update Rollup 13 for Microsoft System Center 2012 R2 Operations Manager. This article also contains the installation instructions for this update. Issues that are fixed...

Critical PPP Daemon Flaw Opens Most Linux Systems to Remote Hackers

The US-CERT today issued advisory warning users of a new dangerous 17-year-old remote code execution vulnerability affecting the PPP daemon pppd software that comes installed on almost all Linux based operating systems, as well as powers the firmware of many other networking devices. The affected...

Critical PPP Daemon Flaw Opens Most Linux Systems to Remote Hackers

The US-CERT today issued advisory warning users of a new dangerous 17-year-old remote code execution vulnerability affecting the PPP daemon pppd software that comes installed on almost all Linux based operating systems, as well as powers the firmware of many other networking devices. The affected...

LibMiner: Container-Based Cryptocurrency Miner Targeting Unprotected Redis Servers

Qualys is actively tracking threats which target containers. In our recent analysis, we have identified a few docker instances executing a malware which we term as “LibMiner”. This malware has the capability to deploy and execute Cryptominer. It uses a unique technique for lateral movement across...

Vulnerability Spotlight: Code execution vulnerability in E2fsprogs

Lilith ^^ of Cisco Talos discovered this vulnerability. E2fsprogs contains an exploitable code execution vulnerability in its directory rehashing functionality. This set of programs is often considered essential software for many Linux and Unix machines and ships by default on most Linux systems...