Other Sites

Ubuntu Buzz !

App Center - Intro to Ubuntu Software Manager

App Center (formerly Ubuntu Software and Software Center) is the program for Ubuntu users to install applications and manage them on Ubuntu computer and laptop. It is an official application of Ubuntu that makes it different to other GNU/Linux systems. We write this article as an explanation to the first item listed in our published compilation List of Ubuntu Default Applications and Their Purposes. We hope this helps everyone including you Ubuntu beginners. Now let's start sharing Free Software together once again!

LinuxGizmos.com

HackerBox 0108 Implements a Macintosh 128K Emulator on RP2040 Platform

This month’s HackerBox introduces an opportunity to explore retro computing through the configuration of the PICOboot RP2040 Development Board to emulate the functionality of an original Macintosh 128K.

Tor Project blog

Memory quota tracking in Arti, for Onion Service DoS resistance

The memory quota tracking feature allows you to restrict the amount of memory used by an Arti process. In particular, it allows you to limit the amount of memory that other people can cause your Arti to use.

9to5Linux

NVIDIA 550.135 Graphics Driver Released with Better Linux Kernel 6.11 Support

NVIDIA 550.135 is a small update that only improves support for distribution running the Linux 6.11 kernel series, which renamed the drm_fbdev_generic function to drm_fbdev_ttm, by using drm_fbdev_ttm when present to keep supporting direct framebuffer access on Wayland compositors to present content on newer kernels.

Blender 4.3 Open-Source 3D Graphics App Introduces Experimental Vulkan Backend

Four months after Blender 4.2 LTS, the Blender 4.3 release introduces an experimental Vulkan backend on Linux and Windows systems to render the user interface. This can be enabled over the default OpenGL backend under Preferences > Interface > Developer Extras > System > Backend. However, there are some limitations like lack of support for GPU subdivision and OpenXR, and slower performance compared to the OpenGL backend.

FreeCAD 1.0 Open-Source 3D Parametric Modeler Released, Here’s What’s New

Highlights of FreeCAD 1.0 include a new built-in Assembly Workbench, the inclusion of the topological naming problem mitigation code, a new materials system for appearance properties, a new BIM workbench with better setup & management tools and better IFC support, as well as a new logo.

Ubuntu 25.04 (Plucky Puffin) Daily Build ISOs Are Now Available for Download

As expected, the first Ubuntu 25.04 daily builds are based on the previous Ubuntu release, Ubuntu 24.10, which arrived last month on October 10th. This means that the Plucky Puffin ISOs include the same core components and software versions as the Oracular Oriole release.

news

Security Leftovers

posted by Roy Schestowitz on Jun 14, 2024,
updated Jun 15, 2024

Silicon Angle ☛ Tile’s parent company Life360 discloses data breach and extortion threat

Life360 Inc., the company that owns the Tile location tracking company, has disclosed that it has recently become a victim of a “criminal extortion attempt” relating to stolen data. Similarly to Fashion Company Apple Inc. and its AirTag, Tile produces small Bluetooth-enabled devices that help users locate and track items such as keys, wallets and bags.
Security Week ☛ GitHub Paid Out Over $4 Million via Bug Bounty Program [Ed: GitHub is against security; this is just a Microsoft PR stunt]

The code hosting platform Microsoft's proprietary prison GitHub has paid out more than $4 million since the launch of its bug bounty program 10 years ago.
>
Silicon Angle ☛ BlackBerry Cylance hit by data breach, hacker lists data for sale on BreachForums

BlackBerry Ltd.-owned cybersecurity company Cylance has suffered a data breach, with the stolen data appearing for sale on the infamous hacking forum BreachForums. First reported June 7 by Dark Web Informer on X Inc., the data is listed for sale by well-known BreachForums hacker “Sp1d3r” for $750,000.
Bleeping Computer ☛ Microsoft June 2024 Patch Tuesday fixes 51 flaws, 18 RCEs

Today is Microsoft’s June 2024 Patch Tuesday, which includes security updates for 51 flaws, eighteen remote code execution flaws, and one publicly disclosed zero-day vulnerability.
IT Wire ☛ Microsoft offers fixes for 49 CVEs in Patch Tuesday release

“In 2023, remote code execution flaws accounted for over one-third (35.1%) of all CVEs patched," Narang noted. "However, this Patch Tuesday release was dominated by elevation of privilege flaws, accounting for nearly half of the CVEs patched (49%)."
Security Week ☛ ICS Patch Tuesday: Advisories Published by Siemens, Schneider Electric, Aveva, CISA

Several ICS vendors released advisories on Tuesday to inform customers about vulnerabilities found in their industrial and OT products.
SANS ☛ The Art of JQ and Command-line Fu
Exploring Git Vulnerabilities: Latest Fixes and Updates

Multiple security issues were found in Git, a popular distributed version control system. The Ubuntu security team has proactively addressed Git vulnerabilities by releasing updates for various versions of the Ubuntu operating system, including Ubuntu 24.04 LTS, Ubuntu 23.10, Ubuntu 22.04 LTS, and Ubuntu 20.04 LTS.
Best Practices for Secure Linux Kernel Updates

Keeping your Linux systems secure and up to date is a crucial part of maintaining a robust IT infrastructure. The Linux kernel is the core component of the operating system, responsible for managing system resources and facilitating communication between hardware and software. Therefore, regular Linux kernel updates are essential to patch vulnerabilities, enhance performance, and ensure overall system security. In this article, we will explore best practices for secure Linux kernel updates, including preparation, update methods, live patching, and post-update actions.
Fear, Uncertainty, Doubt/Fear-mongering/Dramatisation
- InfoSecurity Magazine ☛ Chinese Hackers Leveraging 'Noodle RAT' Backdoor [Ed: Windows issue spun as "Linux", even if Linux has nothing to do with it and the focus should be Windows]
  
  A backdoor in Executable and Linkable Format (ELF) files used by Chinese hackers has wrongly been identified as a variant of existing malware for years, Trend Micro claimed in a new report.
  
  In Noodle RAT: Reviewing the New Backdoor Used by Chinese-Speaking Groups, a blog post based on a Botconf 2024 presentation, Trend Micro Research introduced Noodle RAT, a remote access Trojan used by Chinese-speaking groups engaged in either espionage or cybercrime.
- Trend Micro ☛ Noodle RAT: Reviewing the Backdoor Used by Chinese-Speaking Groups [Ed: This is a Windows issue and Linux isn't the source of the problem]
  
  Since 2022, we have been investigating numerous targeted attacks in the Asia-Pacific region that used the same ELF backdoor. Most vendors identify this backdoor as a variant of existing malware such as Gh0st RAT or Rekoobe. However, we unearthed the truth: this backdoor is not merely a variant of existing malware, but is a new type altogether. We suspect it is being used by Chinese-speaking groups engaged in either espionage or cybercrime. We dubbed this formerly undocumented malware as “Noodle RAT.”

A couple more of these pieces:

New Cross-Platform Malware 'Noodle RAT' Targets Windows and Linux Systems

A previously undocumented cross-platform malware codenamed Noodle RAT has been put to use by Chinese-speaking threat actors either for espionage or cybercrime for years.
This dangerous new form of malware is attacking Windows and Linux systems alike

Noodle RAT malware was flying under the radar for almost a decade

Later:

More Fear, Uncertainty, Doubt/Fear-mongering/Dramatisation.......

Linux malware is controlled through emojis sent from Discord [Ed: Linux... malware. Microsoft site says... let's change the subject]

Other Recent Tux Machines' Posts

Android Leftovers: Samsung Galaxy Tab S10 Ultra review - The biggest Android tablet now relies on MediaTek
AlmaLinux OS 9.5 Is Here as a Free Alternative to Red Hat Enterprise Linux 9.5: The AlmaLinux OS Foundation announced today the release and general availability of AlmaLinux OS 9.5 (codename Teal Serval), as the latest stable version of this free Red Hat Enterprise Linux (RHEL) fork.
Sparky 2024.11 Special Editions: There are new iso images of Sparky 2024.11 Special Editions out there
Linux Kernel 6.12 Officially Released, This Is What’s New: Linus Torvalds announced today the release and general availability of Linux kernel 6.12, the latest stable version of the Linux kernel that introduces several new features and improvements.
Winter holidays are coming: Time for a free software tale: The winter holidays are coming. Here's a free software fairy tale for you to watch, enjoy, and share with your loved ones in front of a cozy fireplace while roasting s'mores
OpenELA Publishes Code for Devs Who Want to DIY RHEL 9.5: Wanna build your own RHEL clone? OpenELA’s got all the source code you need, ready to download for free
NVIDIA 550.135 Graphics Driver Released with Better Linux Kernel 6.11 Support: NVIDIA released today the NVIDIA 550.135 graphics driver as the latest “Production Branch” version for users who want to stay on the stable side of things and not use the NVIDIA 560 “New Feature Branch” series.
Blender 4.3 Open-Source 3D Graphics App Introduces Experimental Vulkan Backend: The Blender Foundation announced today the release and general availability of Blender 4.3 as a major update to this powerful, free, cross-platform, and open-source 3D graphics and modeling software.
FreeCAD 1.0 Open-Source 3D Parametric Modeler Released, Here’s What’s New: FreeCAD 1.0 has been released today as a major milestone for this open-source, free, and cross-platform parametric 3D computer-aided design (CAD) modeler software for GNU/Linux, macOS, and Windows systems.
OpenBSD and FreeBSD News: BSD news and a release
Arch Linux Adopts 0BSD License for Package Sources: Breaking News: Arch Linux adopts the liberal 0BSD license for all package sources, ensuring freedom and flexibility
today's leftovers: FOSS and fake FOSS
Audiocasts/Shows: This Week in Linux, GNU World Order, and Destination Linux: 3 new episodes
today's howtos: many howtos for today
Programming Leftovers: Development picks
Windows TCO Leftovers: Microsoft's true cost
Games: Steam Deck, Sorry We're Closed, and More: Latest from GamingOnLinux
Why I Installed Linux on an Old Laptop Instead of a Raspberry Pi: Recently I wanted to start a new tech project building a lightweight, resource-efficient personal computer
Free and Open Source Software, howtos and Installations: This is free and open source software written in Go
Announcing Incus 6.7: The Incus team is pleased to announce the release of Incus 6.7
This Week in KDE Apps: Python bindings: Welcome to a new issue of "This Week in KDE Apps"! Every week we cover as much as possible of what's happening in the world of KDE apps
10 lessons I've learned from the open-source community that aren't about tech: You might think the only lessons to learn from the open-source environment are technical, but you'd be mistaken
My Linux predictions for 2025: It's going to be a good year: What's coming for the open-source operating system and why
Ubuntu 25.04 (Plucky Puffin) Daily Build ISOs Are Now Available for Download: Now that Canonical officially opened the development of Ubuntu 25.04 (Plucky Puffin), it has published the first daily build ISO images for early adopters, application developers, and general public testing.
GNU Linux-Libre 6.12 Kernel Released for Those Seeking 100% Freedom for Their PCs: The GNU Linux-libre project announced today the release and general availability of the GNU Linux-libre 6.12 kernel for those who seek 100% freedom for their GNU/Linux computers and software freedom lovers.
10 Best Linux Server Distributions in 2024: Looking for the best GNU/Linux server distributions in 2024?
Debunking Common Linux Myths: Facts vs. Fiction: Think GNU/Linux is too hard to use or lacks software? Think again!
New package manager for OpenWrt: As of November 2024 for snapshots from the main development branch and future stable release builds (possibly also including the upcoming 24.10 series), the package manager in OpenWrt has changed from opkg to apk
Today in Techrights: Some of the latest articles
Games, SUSE, IBM, and More: today's leftovers
Linux Foundation Puff Pieces and Realisation of the Software Patents Issue: 3 stories
today's howtos: many howtos
Linux Devices and Open Hardware: mostly the latter
Programming Leftovers: Development news/picks
Security: TP-Link Backdoor, Cybershow, and Open Source Security Podcast: 3 picks, mostly audio
Variscite DART-MX91 SoM offers dual GbE, WiFi 6, 15 years support: In terms of software support the company mentions that it will support both Yocto and Debian
Shotcut 24.11 Open-Source Video Editor Released with Various Bug Fixes: Shotcut 24.11 open-source, free, and cross-platform video editor written in Qt is now available for download with various bug fixes from previous releases.
9to5Linux Weekly Roundup: November 17th, 2024: The 214th installment of the 9to5Linux Weekly Roundup is here for the week ending on November 17th, 2024.
Shotcut 24.11 Improves Stability and Fixes Transition Bugs: Shotcut 24.11, a free cross-platform video editor, rolls out with fixes for frame rate conversion, transitions, exports, and crashes
Ubuntu vs Debian: Linux Distributions Compared Deep Dive: Debian and Ubuntu are two popular Linux distributions
Free and Open Source Software: This is free and open source software
Review: Chimera Linux vs ChimeraOS: About four years ago DistroWatch received two new distribution submissions, fairly close together
What's the Deal with Raspberry Pi's New SD Card? A Hands-On Review: Raspberry Pi is expanding its ecosystem with official accessories. We tested the official SD card and here's what we found
Today in Techrights: Some of the latest articles
Half a Dozen Instructionals/Technical Articles From HowTo Geek: HowTo Geek's howtos
Missing MS Paint on Linux? Here's 5 Alternatives to Try: Here's a few ways to scratch your Microsoft Paint itch on Linux
SimRacing on Linux: A New Reality: we’ll review the current state of simulators and how Proton has revolutionized gaming on the Linux operating syste
GNU/Linux and Other Operating Systems: today's leftovers, mostly from Medevel
Review: Fedora 41 Kinoite: About a month ago we posted a poll which asked in which version of Fedora people were most interested
Programming Leftovers: Development centric picks
Chrome's new features and Slackware on Chromium source tarball availability: Chromium news of sorts
Hardware Hacking and OpenProject on Raspberry Pi: Open Hardware/Modding stuff
Presenting privact at KDE Akademy and Clock from the KDE Community: Some KDE news
Audiocasts/Shows: This Week in Linux, mintCast, and The Linux Link Tech Show: 3 new episodes
First Look at GenBook RK3588, a Modular ARM-Powered Linux Laptop That Can Easily be Upgraded: support for Debian, Ubuntu, or other GNU/Linux distributions
today's howtos: only 5 more for now
People in the '80s Thought Unix Would Take Over. Here's Why They Were Right: Why Unix Was Growing in the '80s
Android Leftovers: 9 Things to Do When You Get a New Android Phone
Stable kernels: Linux 6.11.9, Linux 6.6.62, Linux 6.1.118, Linux 5.15.173, Linux 5.10.230, Linux 5.4.286, and Linux 4.19.324: I'm announcing the release of the 6.11.9 kernel
Archinstall 3.0 Arch Linux Menu-Based Installer Is Here with a Revamped Interface: The Archinstall 3.0 Arch Linux menu-based installer has been released today as a major milestone that brings a revamped interface and various other enhancements.
Security and Windows TCO: lots of Windows TCO examples
today's leftovers: GNU/Linux focus
Automotive Grade Linux (AGL) and Open Hardware: mostly the latter
Programming Leftovers: Programming related picks
today's howtos: modest batch of howtos
Major Overhaul: OpenWrt Adopts Alpine’s APK as New Package Manager: Starting in November 2024, OpenWrt's snapshots and future stable builds will replace OPKG with APK for better package management
Orange Pi 4A low-cost octa-core SBC is powered by Allwinner T527 Cortex-A55 AI SoC with a 2TOPS NPU: Orange Pi says the 4A SBC supports Ubuntu, Debian, and Android 13
Free and Open Source Software: This is free and open source software
5 Alternative Podcast Clients for Linux: Looking to bring your podcast library to your GNU/Linux desktop?
Automatic Tiling Added to ’Tiling Shell’ GNOME Extension - OMG! Ubuntu: you can switch between different layouts ad-hoc
Today in Techrights: Some of the latest articles
Debian, Ubuntu, and FSF: today's leftovers
Security Leftoveers: Security picks
Programming and Standards Leftovers: Programming mostly
OpenSUSE is Rebranding (SUSE is Forcing It to), Tumbleweed Review: some SUSE picks
Red Hat on Security, Paid-for Puff Pieces, and Promotion of Microsoft (Even Proprietary Software and Surveillance by Microsoft): Red Hat is losing its soul
This Week in GNOME #174 Choosing Formats: Update on what happened across the GNOME project in the week from November 08 to November 1

Tux Machines

Other Sites

Ubuntu Buzz !

App Center - Intro to Ubuntu Software Manager

LinuxGizmos.com

HackerBox 0108 Implements a Macintosh 128K Emulator on RP2040 Platform

Tor Project blog

Memory quota tracking in Arti, for Onion Service DoS resistance

9to5Linux

NVIDIA 550.135 Graphics Driver Released with Better Linux Kernel 6.11 Support

Blender 4.3 Open-Source 3D Graphics App Introduces Experimental Vulkan Backend

FreeCAD 1.0 Open-Source 3D Parametric Modeler Released, Here’s What’s New

Ubuntu 25.04 (Plucky Puffin) Daily Build ISOs Are Now Available for Download

news

Security Leftovers

Silicon Angle ☛ Tile’s parent company Life360 discloses data breach and extortion threat

Security Week ☛ GitHub Paid Out Over $4 Million via Bug Bounty Program [Ed: GitHub is against security; this is just a Microsoft PR stunt]

Silicon Angle ☛ BlackBerry Cylance hit by data breach, hacker lists data for sale on BreachForums

Bleeping Computer ☛ Microsoft June 2024 Patch Tuesday fixes 51 flaws, 18 RCEs

IT Wire ☛ Microsoft offers fixes for 49 CVEs in Patch Tuesday release

Security Week ☛ ICS Patch Tuesday: Advisories Published by Siemens, Schneider Electric, Aveva, CISA

SANS ☛ The Art of JQ and Command-line Fu

Exploring Git Vulnerabilities: Latest Fixes and Updates

Best Practices for Secure Linux Kernel Updates

Fear, Uncertainty, Doubt/Fear-mongering/Dramatisation

InfoSecurity Magazine ☛ Chinese Hackers Leveraging 'Noodle RAT' Backdoor [Ed: Windows issue spun as "Linux", even if Linux has nothing to do with it and the focus should be Windows]

Trend Micro ☛ Noodle RAT: Reviewing the Backdoor Used by Chinese-Speaking Groups [Ed: This is a Windows issue and Linux isn't the source of the problem]

New Cross-Platform Malware 'Noodle RAT' Targets Windows and Linux Systems

This dangerous new form of malware is attacking Windows and Linux systems alike

Linux malware is controlled through emojis sent from Discord [Ed: Linux... malware. Microsoft site says... let's change the subject]

Other Recent Tux Machines' Posts