Security Leftovers
-
RFERL ☛ British, U.S. Law Enforcement Agencies Disrupt Ransomware Group Linked To Russia
U.S. and British officials on February 20 announced that they had infiltrated and disrupted a Russian-linked ransomware cybercrime group known as LockBit, arresting two Russian nationals in Poland and Ukraine, and indicting two others in the United States.
-
LWN ☛ Security updates for Tuesday
Security updates have been issued by Fedora (freeglut, hugin, libmodsecurity, qemu, rust-asyncgit, rust-bat, rust-cargo-c, rust-eza, rust-git-absorb, rust-git-delta, rust-git2, rust-gitui, rust-libgit2-sys, rust-lsd, rust-pore, rust-pretty-git-prompt, rust-shadow-rs, rust-silver, rust-tokei, and rust-vergen), Mageia (packages, radare2, ruby-rack, and wireshark), Oracle (.NET 8.0 and python-pillow), Red Hat (gimp:2.8, java-1.8.0-ibm, and kpatch-patch), SUSE (dpdk and opera), and Ubuntu (bind9, curl, linux-raspi, linux-raspi-5.4, node-ip, and tiff).
-
LinuxSecurity ☛ Do I Need Antivirus as a GNU/Linux User?
It is a common belief among GNU/Linux users that antivirus software is unnecessary. Many long-time GNU/Linux users have never encountered viruses or malware on their GNU/Linux desktop.
-
Security Week ☛ Websites Hacked via Vulnerability in Bricks Builder WordPress Plugin
Attackers are exploiting a recent remote code execution flaw in the Bricks Builder WordPress plugin to deploy malware.
-
LWN ☛ The "KeyTrap" DNS vulnerability
DNS resolvers (those that handle DNSSEC, at least) are almost uniformly
vulnerable to an exploit
that has been named "KeyTrap". In short, the right type of packet can
send a DNS system into something close to an infinite loop, taking it out
of service indefinitely.
-
Data Breaches ☛ Updating: In “Cronos,” law enforcement took down 34 Lockbit servers
As reported yesterday, law enforcement seized control of LockBit’s leak site and infrastructure. Attempts to view their leak site today show that the seizure notice has been replaced with a page that links to different information on LockBit’ seizure and law enforcement activities:
-
Silicon Angle ☛ Authorities arrest two LockBit members, disrupt ransomware group’s infrastructure [Ed: Windows TCO]
An international law enforcement task force has arrested two LockBit members, disrupted the ransomware-as-a-service gang’s infrastructure and released a file decryption tool for victims. The task force, which included authorities from 11 countries, disclosed the operation today.
-
Security Week ☛ Anatsa Android Banking Trojan Continues to Spread via Google Play
Recent Anatsa Android banking trojan attacks have become more targeted, showing an evolution in tactics.
>