today's leftovers

posted by Roy Schestowitz on Feb 13, 2023

• Threat activity increasing around Fortinet VPN vulnerability | TechTarget

  Following public disclosure of the critical VPN flaw in December, multiple reports show threat actors are exploiting it to target high-profile organizations.

• Hypervisor patching struggles exacerbate ESXiArgs attacks | TechTarget

  Prolonged downtimes and insufficient vulnerability management contributed to a high number of unpatched VMware ESXi servers that fell victim to a widespread, ongoing ransomware campaign.

  Last week, threat actors targeted vulnerable VMware ESXi servers with a new ransomware variant now known as ESXiArgs. Reports indicate that the attacks exploit two remote code execution vulnerabilities tracked as CVE-2021-21974 and CVE-2020-3992 that still affect thousands of organizations worldwide.

• Put WebAssembly on the front-end and back-end in 2023

  Ratified in December 2019 by the W3C standards committee, WebAssembly has promised to change the way web applications are built and deployed.

• Oh, Canada - Open Infrastructure Summit gathers

  Not Las Vegas, not Barcelona, not Orlando, not San Francisco and not even France’s nice Nice or London’s ‘OMG that’s too far away’ fabulous ExCeL convention centre.

  This time its Vancouver.

  Pardon? No, no really, the Open Infrastructure Summit (OpenInfra to its friends) is being held June 13-15, 2023, at the Vancouver Convention Centre overlooking Vancouver Harbor.

• Top Linux and open-source leaders join the Rocky Enterprise Software Foundation board. | Open Source Watch

  The Rocky Enterprise Software Foundation (RESF) was established in early 2021 to oversee the well-regarded Red Hat Enterprise Linux (RHEL) clone Rocky Linux distribution. But, its ambitions have always been greater than that. As the RESF Charter and Bylaws state, it aims to bring together open-source communities from enterprises, research, academia, individuals, and other groups. RESF's rules are set to ensure that open-source projects will remain under community control while enabling commercial enterprise use cases.

  RESF Board members include Louis Abel, Benjamin (Ben) Agner, Chris DiBona, Greg Kroah-Hartman, Mark Watson, and Gregory M. Kurtzer. Abel, a system engineer and Rocky Linux co-founder, has been involved in the enterprise Linux world for almost a decade and a half. Agner, also a co-founder of Rocky Linux, has over two decades of experience in IT, security, engineering, and governance. DiBona, served as the director of engineering for open source at Google from 2004 to 2023. Kroah-Hartman, a well-known Linux kernel maintainer, is in charge of the stable kernel releases at the Linux Foundation. Watson is a long-term Linux programming expert and former VP and director of the Center for the Advancement of Data and Research in Economics (CADRE). Kurtzer, a 20-plus-year veteran in Linux, open source, and high-performance computing, is the CEO and founder of CIQ.

• Linux Kernel Releases Land, Fixing Frustrating Bugs

  The Linux Kernel Organization has released a number of kernel updates. While these releases aren't particularly groundbreaking, they offer a number of fixes that will make them essential updates for Linux users.