Security Leftovers
-
LWN ☛ Security updates for Wednesday
Security updates have been issued by AlmaLinux (gcc-toolset-14-gcc, nodejs:18, and nodejs:22), Fedora (bootc), Gentoo (OpenSSH), Oracle (doxygen, libxml2, mingw-glib2, and NetworkManager), Red Hat (bind, bind9.16, bind9.18, kernel, kernel-rt, mysql, and mysql:8.0), Slackware (openssh), SUSE (buildah, emacs, glibc, google-osconfig-agent, grub2, java-11-openj9, kernel, netty, netty-tcnative, openssh, openvswitch, podman, and ucode-intel), and Ubuntu (atril, libsndfile, libtasn1-6, openssh, python-virtualenv, and symfony).
-
Windows TCO / Windows Bot Nets
-
Scoop News Group ☛ Salt Typhoon telecom breach remarkable for its ‘indiscriminate’ targeting, FBI official says
Salt Typhoon’s campaign remains active in and has hit multiple additional networks worldwide since being outed last year. The U.S. government sanctioned a Chinese national and a cybersecurity company based in Sichuan, China, for taking part in the hacking campaign.
-
The Record ☛ Recent Ghost/Cring ransomware activity prompts alert from FBI, CISA
Since 2021, victims include “critical infrastructure, schools and universities, healthcare, government networks, religious institutions, technology and manufacturing companies, and numerous small- and medium-sized businesses,” the alert says. Financial gain is the goal, with ransom demands sometimes reaching hundreds of thousands of dollars.
-
PC World ☛ This high-risk keylogger malware is a growing threat to Windows users
Security researchers are warning of a dangerous malware that targets Windows systems. It’s a keylogger that monitors and copies keystrokes on devices in order to intercept passwords and other typed data.
As Fortinet reports, this new variant of the Snake keylogger (also known as 404 Keylogger) is said to have been responsible for over 280 million attack attempts since the beginning of this year alone.
-