Other Sites

Security Leftovers

posted by Roy Schestowitz on Jul 26, 2023

Apple Patches Another Kernel Flaw Exploited in ‘Operation Triangulation’ Attacks

Apple patched another zero-day flaw used in the 'Operation Triangulation' exploit chain. iOS and macOS-powered devices are affected.
Apple issues slew of fixes for macOS Ventura, iPadOS and iOS [Ed: Apple works for the NSA. Security is not the goal, remote access is.]

"Apple has also issued fixes for CVE-2023-37450, a separate zero-day vulnerability that was first patched as part of Apple's Rapid Security Response update process.
Ivanti blocks access to zero-day advisory, then reverses policy

US-based endpoint software management firm Ivanti initially blocked access to a security advisory about an exploitable zero-day in its Endpoint Manager Mobile software, formerly known as MobileIron Core.
XSAs released on 2023-07-24

The Xen Project has released one or more Xen security advisories (XSAs).
Who and What is Behind the Malware Proxy Service SocksEscort?

Researchers this month uncovered a two-year-old Linux-based remote access trojan dubbed AVrecon that enslaves Internet routers into botnet that bilks online advertisers and performs password-spraying attacks. Now new findings reveal that AVrecon is the malware engine behind a 12-year-old service called SocksEscort, which rents hacked residential and small business devices to cybercriminals looking to hide their true location online.

Other Recent Tux Machines' Posts

Fedora 43 Drops GNOME X11 Support, Goes All-In on Wayland: Fedora 43 moves to a Wayland-only GNOME experience
Games: Drop Duchy, SteamOS, and More: Latest picks from GoL
Today in Techrights: Some of the latest articles
Security Leftovers: Security picks
GNU/Linux and Other Operating Systems: leftovers about OSes
BSD Leftovers: Some BSD picks
Free, Libre, and Open Source Software Leftovers: FOSS and more
Programming Leftovers: Development stories
Another Ocean of Fake Articles Sponsored by Red Hat About Red Hat and Buzzwords Galore: really awful 'journalism'
Debian Taking Corporate Money and Defaming Their Own: Debian picks
Open Hardware/Modding: RISV-V, PocketBeagle, ESP32, and More: Hardware leftovers
Videos/Shows: FLOSS Weekly, GNU/Linux, OBS Studio, and More: Some new picks
FOSS Weekly and Software News: Some software leftovers
today's howtos: many howtos for the whole day
Flatpak, Ubuntu Upselling, and Home Assistant: 3 leftovers
Latest Buzzwords Festival at Red Hat Summit and Windows Promotion at redhat.com: redhat.com's latest
Android Leftovers: Google confirms it’s bringing a desktop mode to Android
Why I Switched to Linux From Windows (It Wasn't the Bugs or Updates): It’s only when I used Linux that I realized what a well-thought-out operating system can be
Prime OS on EndeavourOS: Can it Run?: Prime OS can be installed side by side with the Linux system
Don't "buy" e-books from Oxford University Press: I found the book’s page on the publisher’s website, Oxford University Press
Free and Open Source Software: This is free and open source software
OmniOS Community Edition is an enterprise server OS: OmniOS is an illumos based server operating system with ZFS, Bhyve, DTrace, Crossbow, SMF and Linux zone support
Radxa ROCK 4D with RK3576 SoC, PCIe Gen2 x1, Gigabit Ethernet, and PoE Support Starts at $30: Software support includes Debian 12, Android 14, Yocto, and Buildroot
PipeWire 1.4.3 Brings netJACK2 Changes, Improves ALSA audio.channels Support: The PipeWire project released PipeWire 1.4.3 today as yet another minor update to the latest PipeWire 1.4 series for this popular open-source server for handling audio/video streams and hardware on Linux systems.
Games: Humble Bundle, Steam Deck, and More: 10 stories from GamingOnLinux
LWN Articles About Kernel: outside paywall now
The last of YaST?: By Joe Brockmeier
Today in Techrights: Some of the latest articles
Android Leftovers: XREAL’s ‘Project Aura’ will be the second Android XR headset, more details in June
Fwupd 2.0.10 Linux Firmware Updater Adds Support for Lenovo Legion Touchpad: Fwupd 2.0.10 is out today as the tenth maintenance update to the latest fwupd 2.0 release of this open-source Linux firmware update utility with support for more devices, new features, and bug fixes.
SiFive and Red Hat Collaborate to Bring RHEL 10 to RISC-V Development: SiFive has announced a new collaboration with Red Hat to deliver a developer preview of Red Hat Enterprise Linux 10 for the RISC-V architecture
Free and Open Source Software: This is free and open source software
Tribblix is an illumos-based operating system with a retro style: Tribblix is an open source operating system
KDE: Do Not Disturb: We're actually going to be using the Do Not Disturb feature in Plasma 6.4
AlmaLinux OS 9.6 Is Out as a Free Alternative to Red Hat Enterprise Linux 9.6: AlmaLinux OS 9.6 distribution is now available for download based on and as a free alternative to Red Hat Enterprise Linux 9.6. Here’s what’s new!
5 of the easiest, quickest Linux distros to install - and I've tried them all: If you're looking to hop on the Linux bandwagon (and you should), here are a handful of distributions so easy anyone can install them
Free Software and Sharing Leftovers: mostly FOSS stories
GNU/Linux and BSD Leftovers: not much about BSD, mostly GNU/Linux
Security Leftovers: Security and related themes
Audiocasts/Shows: Ask Noah Show, Open Source Lab, Destination Linux, What’s in the SOSS?: 4 new episodes/videos
Mozilla Introducing Flavius Floare and Talking MZLA with Ryan Sipes of Thunderbird: Some Mozilla people
Programming Leftovers: Development picks
Open Hardware/Modding: Flipper Zero, Arduino, RISC-V, and More: Hardware news
A Lot More Red Hat-Sponsored Fake 'Journalism', Especially Hey Hi (AI) Hype to Exaggerate Potential of Slop: Red Hat goes low
Microsoft's Latest Openwashing Propaganda (Proprietary is Now "Open Source"): gross spin/lies
today's howtos: only a few more for now
Games: Consoles, Steam DRM, and Oldies: some gaming picks
Systemd Continues Raising Concerns for Linux Users: Systemd is one of the more controversial elements in Linux, but the latest version is raising some serious concerns about security, performance, and the future of Linux
Konsole tab layouts and KDE is finally getting a native virtual machine manager called "Karton": Some KDE updates
Red Hat Buys Hey Hi (AI) SPAM Disguised as 'Journalism', Fedora Has Elections: Fedora and more
Apt 3.1 Added New Option to Exclude App Packages from A Repository: released new version 3.1.0 on Monday
[DE] Austrian radio broadcast re. open source: It covers from Dennis M. Ritchie/Ken Thompson/UNIX to the Internet to Richard Stallman to the origins of the WWW
Linux Graphics and More: Graphics-related news
Hardware/Modding: Raspberry Pi and More: Some hardware picks
today's howtos: many howtos for the morning time
IBM Red Hat is Selling Microsoft, Windows, LLM Slop, and Proprietary Software: IBM very disappointing
Games: RoadCraft, Preserve, and More: 10 new articles at GamingOnLinux
Android Leftovers: Android Auto gets video and browser apps ‘soon,’ more weather apps finally coming
Ubuntu 25.10 will Have a Brand New Terminal (and Image Viewer): Ubuntu 25.10 replaces its default terminal and image viewer with modern apps
Zotac reveals next-gen gaming handheld with AMD Strix Point and Manjaro Linux: As promised, Zotac is using the Computex show in Taiwan this week to provide an early look at its next-gen handheld gaming PC
I activated the Linux terminal on my Pixel, and you should too: Here’s the skinny on the easiest way to bring Linux to your phone
Best Free and Open Source Software: We recommend the best free and open source alternatives
Today in Techrights: Some of the latest articles