Security Leftovers
-
LWN ☛ Security updates for Wednesday
Security updates have been issued by Debian (tzdata), Fedora (expat and tigervnc), Red Hat (kernel, kernel-rt, thunderbird, and webkit2gtk3), SUSE (dcmtk), and Ubuntu (restrictedpython and uriparser).
-
Pen Test Partners ☛ Cybersecurity communities. Small hacker groups, big impact
TL;DR Cybersecurity communities and groups are an excellent opportunity to network and learn
-
Security Week ☛ HP Launches Printers With Quantum Resilient Cryptography [Ed: Mumbo-jumbo hype [1, 2]]
Printers can sit in the corner for ten years or more, while quantum decryption is thought by many to be less than 10 years away.
-
Security Week ☛ Scareware Combined With Phishing in Attacks Targeting macOS Users
A long-running campaign phishing for credentials through scareware recently switched to targeting macOS users.
-
Security Week ☛ Chinese Hacking Group MirrorFace Targeting Europe
Chinese hacking group MirrorFace has targeted a Central European diplomatic institute with the Anel backdoor and AsyncRAT.
-
Security Week ☛ Infosys to Pay $17.5 Million in Settlement Over 2023 Data Breach
Infosys McCamish System has agreed to pay $17.5 million to settle six class action lawsuits filed over a 2023 data breach.
-
SANS ☛ Exploit Attempts for Cisco Smart Licensing Utility CVE-2024-20439 and CVE-2024-20440, (Wed, Mar 19th)
In September, Cisco published an advisory noting two vulnerabilities [1]:
-
TechRepublic ☛ Stealthy Apache Tomcat Critical Exploit Bypasses Security Filters: Are You at Risk?
By simply sending HTTP requests, attackers can trigger the deserialisation of malicious data in Tomcat's session storage and gain control.
-
Security Week ☛ Microsoft Warns of New StilachiRAT Malware
Microsoft has shared details on StilachiRAT, an evasive and persistent piece of malware that facilitates sensitive data theft.
-
Security Week ☛ What’s Behind Google’s $32 Billion Wiz Acquisition?
News analysis: Surveillance Giant Google positions itself to compete with Abusive Monopolist Microsoft for enterprise security dollars. How does this deal affect startup ecosystem?
-
LWN ☛ Supply Chain Attacks on GNU/Linux distributions (Fenrisk)
A security company called Fenrisk has posted an overview of a pair
of claimed successful supply-chain attacks on the Fedora and openSUSE
distributions.
-
ZDNet ☛ Linux Foundation's trust scorecards aim to battle rising open-source security threats
How do you tell the difference between trustworthy open-source developers and hackers? Here's one idea.
-
Meta: FreeType flaw affecting multiple Linux distributions under active exploitation [Ed: It's a font issue, not a "Linux" issue]
Meta has identified a high-severity security flaw in the FreeType open-source font rendering library that may have been actively exploited by threat actors, The Hacker News reports.
The vulnerability, tracked as CVE-2025-27363, carries a CVSS score of 8.1 and is classified as an out-of-bounds write vulnerability.