Tags: vulnerability

krack-security.jpg

KRACK
The recent KRACK vulnerability targets the link between your device and the Wi-Fi access point, which is probably a router either in your home, your office, or your favorite cafe. These tips can help improve the security of your connection.

Tips to Secure Your Network in the Wake of KRACK

The KRACK attacks vulnerability is now more than 48 hours old and has been discussed in detail on a number of technology-related sites, so I won’t repeat the technical details of the attack here. To summarize: A flaw in the WPA2 wireless handshake protocol allows attackers to sniff or manipulate...
Read 2 Comments

​Serious Linux Kernel Security Bug Fixed

Linux server administrators will want to patch their systems as soon as possible. Sometimes old fixed bugs come back to bite us. That's the case with CVE-2017-1000253, a Local Privilege Escalation Linux kernel bug. ... The problem is that the bug lived on in long-term support (LTS) versions of...
Read 0 Comments

Apache “Optionsbleed” Vulnerability – What You Need to Know

Remember Heartbleed? That was a weird sort of bug, based on a feature in OpenSSL called “heartbeat”, whereby a visitor to your server can send it a short message, such as HELLO, and then wait a bit for the same short message to come back, thus proving that the connection is still alive. The...
Read 0 Comments

Serious Privilege Escalation Bug in Unix OSes Imperils Servers Everywhere

“Stack Clash” poses threat to Linux, FreeBSD, OpenBSD, and other OSes. A raft of Unix-based operating systems—including Linux, OpenBSD, and FreeBSD—contain flaws that let attackers elevate low-level access on a vulnerable computer to unfettered root. Security experts are advising administrators to...
Read 0 Comments

Critical Vulnerability Under “Massive” Attack Imperils High-Impact Sites

In a string of attacks that have escalated over the past 48 hours, hackers are actively exploiting a critical vulnerability that allows them to take almost complete control of Web servers used by banks, government agencies, and large Internet companies. The code-execution bug resides in the Apache...
Read 0 Comments

Old Kernel Code Execution Bug Patched

A critical, local code-execution vulnerability in the Linux kernel was patched more than a week ago, continuing a run of serious security issues in the operating system, most of which have been hiding in the code for years. Details on the vulnerability were published Tuesday by researcher Philip...
Read 0 Comments

There’s a New DDoS Army, and It Could Soon Rival Record-Setting Mirai

For almost three months, Internet-of-things botnets built by software called Mirai have been a driving force behind a new breed of attacks so powerful they threaten the Internet as we know it. Now, a new botnet is emerging that could soon magnify or even rival that threat. The as-yet unnamed botnet...
Read 0 Comments

How to Fix the Cryptsetup Vulnerability in Linux

A new vulnerability has been found to affect encrypted Debian and Ubuntu systems. Here's how to put a temporary fix on the Cryptsetup issue. Linux enjoys a level of security that most platforms cannot touch. That does not, in any way, mean it is perfect. In fact, over the last couple of years a...
Read 0 Comments

How Linux Can Save Small Businesses (And Old Hardware)

Many small businesses with tight budgets are facing a tough choice: Stick with obsolete systems and remain vulnerable to hackers, or spend a lot to install new gear. David Gewirtz shows how Linux can help you preserve your investment while staying safe and secure. Linux is much more secure than...
Read 0 Comments

Admins, Update Your Databases to Avoid the MySQL Bug

MySQL, MariaDB, and PerconaDB administrators need to check their database versions, as attackers can chain two critical vulnerabilities and completely take over the server hosting the database. The two critical vulnerabilities, which can lead to arbitrary code execution, root privilege escalation,...
Read 0 Comments

Pages

Click Here!