Security, FUD, and Windows TCO

posted by Roy Schestowitz on Nov 12, 2025

• LWN ☛ Security updates for Tuesday

  Security updates have been issued by AlmaLinux (bind, expat, kernel, osbuild-composer, qt6-qtsvg, runc, valkey, and xorg-x11-server-Xwayland), Debian (incus), Fedora (cef and dotnet8.0), Mageia (strongswan), Red Hat (fence-agents and python-requests), SUSE (chromium, colord, erlang26, java-1_8_0-openjdk, libsoup, python-django, thunderbird, tiff, and warewulf4), and Ubuntu (intel-microcode and rust-sudo-rs).

• Neowin ☛ Linux gets malware too, Kaspersky says, as it launches antivirus for home users [Ed: Installing Russian proprietary software doesn't sound even remotely like security]

  Kaspersky says GNU/Linux is not immune to malware as it releases its antivirus for home users, available via a subscription fee.

• Phoronix ☛ Kaspersky Brings Its Anti-Virus Software To GNU/Linux For Home Users [Ed: Why advertise this?]

  Russian cybersecurity firm Kaspersky Lab announced that it's bringing its flagship Kaspersky anti-virus software for home users over to Linux.

• BellSoft’s 3-in-1 Strategy for Container Security

  BellSoft debuts Hardened Images for Kubernetes, reducing vulnerabilities with locked, lightweight containers built on Alpaquita GNU/Linux and Liberica JDK for secure performance.

• Pen Test Partners ☛ Finding your path into DFIR

  Digital Forensics and Incident Response (DFIR) has a certain appeal to aspiring cybersecurity professionals. The mix of ‘CSI-style’ forensic investigations with the chaos and pressure of incident response engagements.

• Security Week ☛ SAP Patches Critical Flaws in SQL Anywhere Monitor, Solution Manager

  Hardcoded credentials in SQL Anywhere Monitor could allow attackers to execute arbitrary code on vulnerable deployments.

• Security Week ☛ Critical Triofox Vulnerability Exploited in the Wild

  A threat actor has exploited the issue to create a new administrator account and then used the account to execute remote access tools.

• Security Week ☛ Adobe Patches 29 Vulnerabilities

  Adobe has fixed InDesign, InCopy, Photoshop, Illustrator, Pass, Substance 3D Stager, and Format Plugins vulnerabilities.

• Fear, Uncertainty, Doubt/Fear-mongering/Dramatisation

  • Amazon WorkSpaces for Linux flaw poses token theft risk [Ed: The issue is WorkSpaces, not "Linux"]

• Windows TCO / Bug Doors

  • SANS ☛ Microsoft Patch Tuesday for November 2025, (Tue, Nov 11th)

    One of the vulnerabilities is already being exploited, and five are rated as critical.

  • Scoop News Group ☛ Microsoft Patch Tuesday addresses 63 defects, including one actively exploited zero-day

    Researchers warn that although exploitation of the zero-day is complex, a functional exploit exists in the wild.

  • Linux Magazine ☛ Another GNU/Linux Malware Discovered [Ed: Windows TCO [1, 2]

    Russian hackers use Hyper-V to hide malware within GNU/Linux virtual machines.

  • Security Week ☛ Microsoft Patches Actively Exploited backdoored Windows Kernel Zero-Day

    Microsoft’s latest Patch Tuesday updates address more than 60 vulnerabilities in backdoored Windows and other products.