Authentication - Securezoo Blog

Kobalos Linux malware targets high performance cluster computers

Post author:Frank Crast
Post published:February 3, 2021
Post category:Authentication Cybersecurity Attacks Malware

A complex Linux malware dubbed Kobalos is targeting high performance cluster (HPC) computers around the globe.

Sudo privilege escalation vulnerability (CVE-2021-3156)

Post author:Frank Crast
Post published:January 29, 2021
Post category:Authentication Security Updates & Patches Vulnerabilities & Exploits

A vulnerability in open-source sudo utility could allow regular users to gain root privileges on vulnerable Linux hosts without authentication.

High risk vulnerability in Zyxel firewalls and AP controllers exploited in the wild

Post author:Frank Crast
Post published:January 11, 2021
Post category:Authentication Network Security Vulnerabilities & Exploits

Security experts have warned about a high risk hardcoded credential vulnerability in Zyxel firewalls and AP controllers. Some sources have confirmed that bad actors have already ramped up exploits against the vulnerability.

NSA: New guidance to eliminate obsolete TLS protocols

Post author:Frank Crast
Post published:January 9, 2021
Post category:Authentication Configuration Management Cryptography Cybersecurity Articles Vulnerabilities & Exploits

The National Security Agency (NSA) has issued new guidance to eliminate obsolete Transport Layer Security (TLS) protocol configurations (such as TLS 1.0, TLS 1.1, SSLv2, SSLv3 and weak ciphers).

NIST SP 800-52 Rev. 2: Guidelines for the Selection, Configuration, and Use of Transport Layer Security (TLS) Implementations

Post author:Frank Crast
Post published:August 29, 2019
Post category:Authentication Cryptography Standards & Guidelines

The National Institute of Standards and Technology (NIST) has released its Security Publication (SP) 800-52 Rev. 2: Guidelines for the Selection, Configuration, and Use of Transport Layer Security (TLS) Implementations.