Security Leftovers

posted by Roy Schestowitz on Dec 21, 2022

• Do You Still Need an Antivirus? - PIA VPN Blog [Ed: Poorly composed.]

  Last, but certainly not least is Linux, an open-source operating system that renders it intrinsically safe and transparent. Malware which targets Linux systems is exceedingly rare, so if you’re considering a safer OS for your next machine, you might want to check it out.

  Linux, by design, uses the principle of least privilege, wherein every user can only enter specific areas of the system. This limits catastrophic disruption in the event of a malware attack since the malicious code will be barred entry in sensitive system areas.

  Even if Linux malware infects the system, it shouldn’t be able to affect the OS core, not without help. Linux is the least common OS among everyday users, compared to Windows and macOS, making it less attractive as a target for attacks.

  That said, Linux is still the de-facto OS used in enterprise and mission-critical environments. Servers running Linux distros are constantly hit by DDoS (Distributed Denial of Service) attacks, viruses, spyware, ransomware, and worms. Zero-day attacks are also recorded.

• Trojaned Windows Installer Targets Ukraine - Schneier on Security [Ed: Every country, including Ukraine, should not be using Windows at all]

  Mandiant is reporting on a trojaned Windows installer that targets Ukrainian users. The installer was left on various torrent sites, presumably ensnaring people downloading pirated copies of the operating system...

• Security updates for Tuesday [LWN.net]

  Security updates have been issued by Fedora (mujs) and SUSE (kernel and thunderbird).

• CISA Releases Six Industrial Control Systems Advisories | CISA

  CISA released six Industrial Control Systems (ICS) advisories on December 20, 2022. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS.