Other Sites

LinuxGizmos.com

LILYGO to Launch ESP32-Based Gizmo with E-Paper Display, LoRa, and MagSafe Charging

The T5 E-Paper S3 Pro is a compact development board featuring the ESP32-S3-WROOM-1 microcontroller alongside advanced capabilities. Designed for low-power applications, it integrates wireless connectivity, e-paper technology, and peripheral support

Waveshare Development Boards Feature RP2350 with 100 Mbps Ethernet or 1.14-Inch LCD

Waveshare has introduced a series of microcontroller development boards based on the RP2350 chipset designed by Raspberry Pi. These boards cater to diverse development needs, offering features such as GPIO expandability, 100 Mbps Ethernet, and compact LCD displays.

TANGO-7010 Series Featuring Intel 12th Gen i3 to i9 Cores and Triple 2.5GbE Ports

ICP Deutschland recently introduced the TANGO-7010 series, a compact mini PC powered by Intel 12th-generation Core processors. Designed for demanding applications, the series features efficient thermal management with a system fan and supports various storage interfaces.

Security Leftovers

posted by Roy Schestowitz on Jun 09, 2023

Barracuda Urges Replacing — Not Patching — Its Email Security Gateways

It’s not often that a zero-day vulnerability causes a network security vendor to urge customers to physically remove and decommission an entire line of affected hardware — as opposed to just applying software updates. But experts say that is exactly what transpired this week with Barracuda Networks, as the company struggled to combat a sprawling malware threat which appears to have undermined its email security appliances in such a fundamental way that they can no longer be safely updated with software fixes.
Web shells persist days after MOVEit mitigation

Exploiting a zero-day vulnerability in MOVEit Transfer, criminals have deployed web shells on vulnerable file transfer servers and gained access to a variety of high-profile organizations. More than a week since remediation instructions were published, Netcraft has discovered web shells still present on servers associated with energy, healthcare, and finance companies.

Web shells are control panels used by criminals to exfiltrate data from compromised servers, run exploits, and maintain remote access, often persisting long after the original vulnerability has been fixed.

Using zero-day vulnerabilities to install web shells is not a new tactic. We previously reported on web shells installed via the Microsoft Exchange ProxyLogon and ProxyShell vulnerabilities in 2021. Two years later, Netcraft continues to detect new installations of web shells on still-vulnerable Microsoft Exchange servers.
Russians charged with hacking Mt. Gox crypto exchange, running BTC-e
North Korean Hackers Blamed for $35 Million Atomic Wallet Crypto Theft

Researchers believe North Korea-linked Lazarus Group has stolen at least $35 million in cryptocurrency from Atomic Wallet.
Vulnerabilities in Honda eCommerce Platform Exposed Customer, Dealer Data

Vulnerabilities found by a researcher in a Honda ecommerce platform used for equipment sales exposed customer and dealer information.
Cisco Patches Critical Vulnerability in Enterprise Collaboration Solutions

Cisco releases fixes for a critical-severity vulnerability in Expressway series and TelePresence Video Communication Server (VCS).

Other Recent Tux Machines' Posts

today's leftovers: Misc. picks
today's leftovers: GNU/Linux and FOSS picks
Programming and Development Tools: Programming leftovers mostly
Security Leftovers: only 3 for now
Linux Devices and Open Hardware Leftovers: misc. picks
EasyOS Development Updates: EasyOS's latest
KDE: Criticism, KUserFeedback (KUF), and Microsoft Outsources: two KDE picks
Applications: Makulu Tools, Hugin, amd Email Client: 4 picks regarding software
today's howtos: first big batch
10 Reasons To Choose Ubuntu Server Over the Competition: When you think of a server's operating system (OS), what comes to mind?
Mozilla Firefox 133 Is Now Available for Download, Here’s What’s New: Mozilla Firefox 133 open-source web browser is now available for download with the ability to show tabs from other devices in the Tab Overview menu and other changes.
Fwupd 2.0.2 Firmware Updater Adds Support for ASUS ROG Ally, Raspberry Pi Pico: Fwupd 2.0.2 Linux firmware update utiltiy is now available for download with support for checking AMD hardware configuration MSR and other changes.
Android Leftovers: Why the Pixel Tablet's cancellation makes sense in light of a possible Android and Chrome OS merge
today's leftovers: security and more
Canonical wants Ubuntu 20.04 LTS users to upgrade as End of Life approaches: Canonical has issued a warning to users of Ubuntu 20.04 LTS
Audiocasts/Shows: Linux Out Loud, GNU World Order, Open Source Security Podcast, This Week in Linux: 4 new episodes
Open Hardware/Modding/Retro: GNU-like Mobile Linux, Old Amigas, and More: gadgets and hacking
Guix/Hurd on a Thinkpad X60: A lot has happened with respect to the Hurd since our Childhurds and GNU/Hurd Substitutes post
Free and Open Source Software: Magpie is used by the Budgie Desktop as its window manager
Review: Linux Lite 7.2: Linux Lite 7.2 is an update from the 7.0 release in June, and it's based on Ubuntu 24.04.1 LTS and will receive five years of support
KDE: UX Insights (that we cannot get right now): After the criticism in the last post about the limitations of KUserFeedback (KUF) for doing data-driven UX work
9to5Linux Weekly Roundup: November 24th, 2024: The 215th installment of the 9to5Linux Weekly Roundup is here for the week ending on November 24th, 2024.
Today in Techrights: Some of the latest articles
TuxCare and Cloudimg Partner to Bring Patches to Dead Linux Cloud Images: TuxCare has partnered with UK-based Cloudimg, to bring its customers TuxCare Endless Lifecycle Support for keeping end-of-life Linux distributions supported
Android Leftovers: Here's what I'll miss about Chrome OS once it turns into Android
Just Starting in the Linux Terminal? Here Are Some Setup Tips: The Linux terminal is useful, but it sometimes gets a bad rap for being boring
Free and Open Source Software: This is free and open source software
today's leftovers: GNU/Linux and FOSS links
dpb (Distributed Ports Builder), Warp and Wireshark: Applications in focus
Games: Humble Bundle, Social Media Card Game, and Snake: With Linux twist
Programming Leftovers: coding related links
Open Hardware Leftovers: ESP32 and more
Audiocasts and Videos: Collection From Invidious and TLLTS: from the past week
today's howtos: many howots for today and some older ones
FreeBSD 14.2-RC1 Now Available: The first Release Candidate build of the 14.2-RELEASE release cycle is now available
Wine 9.22 Released with Display Mode Virtualization Support: Wine 9.22 is now available with Wayland driver enabled by default, DirectPlay network boosts, Unicode CLDR 46 updates, and display virtualization
10 Best Linux FTP Clients for Every User in 2024: Looking for reliable FTP clients on Linux
Moksha – modern iteration of the Enlightenment window manager: This is free and open source software
RELIANOID Load Balancer Community Edition v7.5 Release Notes: We are thrilled to announce the release of RELIANOID 7.5.0 (Community Edition)
AlmaLinux OS 9.5 Is Here as a Free Alternative to Red Hat Enterprise Linux 9.5: The AlmaLinux OS Foundation announced today the release and general availability of AlmaLinux OS 9.5 (codename Teal Serval), as the latest stable version of this free Red Hat Enterprise Linux (RHEL) fork.
GhostBSD 24.10.1 Is Now Available: We’re excited to announce the release of GhostBSD 24.10.1
KaOS 2024.11: More application are now ready to use Qt6 and Frameworks 6 including Freecad, Sqlitebrowser, Cantor, Kalzium, Webacmoid and Liquidshell
Fedora / IBM / Oracle Linux / IBM Leftovers: the Red Hat universe in blogs and news sites
Today in Techrights: Some of the latest articles