Ensure That Removable Device Partitions Are Mounted Using noexec and nodev

The security of removable devices cannot be ensured completely due to a lot of factors, such as the source, usage, and transportation process. In this sense, removable devices are the main host for viruses. Therefore, removable devices must be mounted using noexec and nodev to improve security an...

A Decade-Long Chinese Espionage Campaign Targets Southeast Asia and Australia

A previously undocumented Chinese-speaking advanced persistent threat APT actor dubbed Aoqin Dragon has been linked to a string of espionage-oriented attacks aimed at government, education, and telecom entities chiefly in Southeast Asia and Australia dating as far back as 2013. "Aoqin Dragon seek...

Malicious USB Drives Infect 35,000 Computers With Crypto-Mining Botnet

Cybersecurity researchers from ESET on Thursday said they took down a portion of a malware botnet comprising at least 35,000 compromised Windows systems that attackers were secretly using to mine Monero cryptocurrency. The botnet, named "VictoryGate," has been active since May 2019, with infectio...

USB Device is Not Backed Up by Veeam Agent for Microsoft Windows

Challenge A USB storage device attached to a Windows machine is not backed up by Veeam Agent for Microsoft Windows despite the "Include external USB drives" option being selected. Cause Due to limitations within the Microsoft VSS functionality, creating a shadow copy of a removable device, such a...

Windows Defender ATP has protections for USB and removable devices

Meet Jimmy. Jimmy is an employee in your company. He Does Things With Computers official title. Last Wednesday, as Jimmy got out of his car after parking in the company-owned parking lot, he saw something on the ground. That something is a 512GB USB flash drive! Jimmy picks up the drive, whistlin...

May 16, 2017—KB4019217 (Preview of Monthly Rollup)

May 16, 2017—KB4019217 Preview of Monthly Rollup Improvements and fixes This non-security update includes improvements and fixes that were a part of Monthly Rollup KB4019215 released May 9, 2017 and also includes these new quality improvements as a preview of the next Monthly Rollup update:...

KDE Plasma Workspaces: Multiple vulnerabilities

Background KDE Plasma workspace is a widget based desktop environment designed to be fast and efficient. Description Multiple vulnerabilities have been discovered in KDE Plasma Workspaces. Please review the referenced CVE identifiers for details. Impact An attacker could execute arbitrary command...

Debian DSA-4116-1 : plasma-workspace - security update

Krzysztof Sieluzycki discovered that the notifier for removable devices in the KDE Plasma workspace performed insufficient sanitisation of FAT/VFAT volume labels, which could result in the execution of arbitrary shell commands if a removable device with a malformed disk label is mounted. C Tenabl...

[SECURITY] Fedora 19 Update: pmount-0.9.23-4.fc19

pmount "policy mount" is a wrapper around the standard mount program which permits normal users to mount removable devices without a matching /etc/fstab entry. Be warned that pmount is installed setuid root...

[SECURITY] Fedora 17 Update: pmount-0.9.23-4.fc17

pmount "policy mount" is a wrapper around the standard mount program which permits normal users to mount removable devices without a matching /etc/fstab entry. Be warned that pmount is installed setuid root...

MDVA-2009:020 : rhythmbox

Rhythmbox could crash when handling removable devices and media players, like ipods. This update fixes the problem. %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a security fix. Disabled on 2012/09/06. C Tenable Network Security, Inc. Th...

Mandriva Update for kdebase MDVA-2008:172 (kdebase)

Check for the Version of kdebase OpenVAS Vulnerability Test Mandriva Update for kdebase MDVA-2008:172 kdebase Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...

Ubuntu 4.10 / 5.04 : util-linux vulnerability (USN-184-1)

David Watson discovered that 'umount -r' removed some restrictive mount options like the 'nosuid' flag. If /etc/fstab contains user-mountable removable devices which specify the 'nosuid' flag which is common practice for such devices, a local attacker could exploit this to execute arbitrary...

USN-184-1: umount vulnerability

David Watson discovered that "umount -r" removed some restrictive mount options like the "nosuid" flag. If /etc/fstab contains user-mountable removable devices which specify the "nosuid" flag which is common practice for such devices, a local attacker could exploit this to execute arbitrary...