Skip to content
Securezoo Blog
  • Home
  • Threat Center Blog
    • Application Security
    • Cloud Security
    • Cryptography
    • Cybersecurity Articles
    • Cybersecurity Attacks
    • Identity & Access Management
    • Insider Threats
    • Internet of Things (IoT)
    • MalwareCyber security malware threats.
    • Network Security
    • Password Management
    • Regulations & Laws
    • Security Updates & Patches
    • Third-Party Security
    • Vulnerabilities & Exploits
    • Zero-days
  • Resources
  • Security Guidelines
    • CIS
    • PCI
    • NIST
      • NIST – Cryptography
      • NIST – Identity & Access Management
      • NIST – Messaging Security
      • NIST – Standards & Frameworks
      • NIST – Storage Security
      • NIST – Third Party Security
    • Other
  • Services
    • Security Assessment
  • About Us
  • Contact Us
  • Privacy Policy
Menu Close
  • Home
  • Threat Center Blog
    • Application Security
    • Cloud Security
    • Cryptography
    • Cybersecurity Articles
    • Cybersecurity Attacks
    • Identity & Access Management
    • Insider Threats
    • Internet of Things (IoT)
    • Malware
    • Network Security
    • Password Management
    • Regulations & Laws
    • Security Updates & Patches
    • Third-Party Security
    • Vulnerabilities & Exploits
    • Zero-days
  • Resources
  • Security Guidelines
    • CIS
    • PCI
    • NIST
      • NIST – Cryptography
      • NIST – Identity & Access Management
      • NIST – Messaging Security
      • NIST – Standards & Frameworks
      • NIST – Storage Security
      • NIST – Third Party Security
    • Other
  • Services
    • Security Assessment
  • About Us
  • Contact Us
  • Privacy Policy

BusyBox vulnerabilities impact embedded Linux OS used in IoT and OT devices

  • Post published:November 9, 2021
  • Post category:Security Updates & Patches/Vulnerabilities & Exploits

Researchers have discovered 14 BusyBox vulnerabilities that impact embedded Linux OS used in many internet of things (IoT) and operational technology (OT) devices.

Continue ReadingBusyBox vulnerabilities impact embedded Linux OS used in IoT and OT devices

FontOnLake malware targets Linux systems

  • Post published:October 11, 2021
  • Post category:Cybersecurity Attacks/Malware

A previously unknown malware family dubbed FontOnLake is targeting Linux systems. The malware is made up of “custom and well-designed modules.”

Continue ReadingFontOnLake malware targets Linux systems

Babuk ransomware: Soon to be targeting VMware and *nix systems?

  • Post published:August 1, 2021
  • Post category:Cybersecurity Attacks/Malware

Cybercriminals behind Babuk ransomware announced in an underground forum that they are developing malware targeting Linux/UNIX and VMware ESXi systems.

Continue ReadingBabuk ransomware: Soon to be targeting VMware and *nix systems?

7-year old polkit vulnerability could allow hackers root shell on Linux systems

  • Post published:June 14, 2021
  • Post category:Authentication/Security Updates & Patches/Vulnerabilities & Exploits

A security researcher has discovered a seven-year old polkit privileged escalation vulnerability CVE-2021-3560 that could allow a remote attacker root shell access on Linux systems.

Continue Reading7-year old polkit vulnerability could allow hackers root shell on Linux systems

Kobalos Linux malware targets high performance cluster computers

  • Post published:February 3, 2021
  • Post category:Authentication/Cybersecurity Attacks/Malware

A complex Linux malware dubbed Kobalos is targeting high performance cluster (HPC) computers around the globe.

Continue ReadingKobalos Linux malware targets high performance cluster computers

Sudo privilege escalation vulnerability (CVE-2021-3156)

  • Post published:January 29, 2021
  • Post category:Authentication/Security Updates & Patches/Vulnerabilities & Exploits

A vulnerability in open-source sudo utility could allow regular users to gain root privileges on vulnerable Linux hosts without authentication.

Continue ReadingSudo privilege escalation vulnerability (CVE-2021-3156)

FreakOut malware exploits new Linux vulnerabilities

  • Post published:January 20, 2021
  • Post category:Malware/Security Updates & Patches/Vulnerabilities & Exploits

Security researchers have discovered a new malware dubbed "FreakOut" that exploits new Linux vulnerabilities.

Continue ReadingFreakOut malware exploits new Linux vulnerabilities

NSA and FBI: watch out for Russian malware Drovorub

  • Post published:August 14, 2020
  • Post category:Cybersecurity Attacks

The National Security Agency (NSA) and the Federal Bureau of Investigation (FBI) have released a joint cybersecurity alert for a new Russian malware dubbed Drovorub.

Continue ReadingNSA and FBI: watch out for Russian malware Drovorub

Doki malware targets exposed Docker servers in the cloud

  • Post published:July 29, 2020
  • Post category:Cloud Security/Configuration Management/Cybersecurity Attacks

Security researchers at Intezer Labs detected a new Linux malware dubbed "Doki" and cyber attack that uses blockchain wallet for generating command and control (C2) domain names.

Continue ReadingDoki malware targets exposed Docker servers in the cloud

Samba fixes 3 security vulnerabilities in latest release 4.11.2

  • Post published:October 30, 2019
  • Post category:Security Updates & Patches/Vulnerabilities & Exploits

Samba has released a software update and patches for three security vulnerabilities that impact Samba products. A remote attacker could take advantage of these bugs and exploit unpatched systems.

Continue ReadingSamba fixes 3 security vulnerabilities in latest release 4.11.2
  • 1
  • 2
  • 3
  • Go to the next page

Categories

Archives

RSS Securezoo Blog Posts

  • Panasonic confirms breach of file server December 1, 2021
  • EwDoor Botnet attacking AT&T network edge devices December 1, 2021
  • Windows Mobile Device Management 0-day vulnerability could lead to local privilege escalation November 30, 2021
  • VMware patches 2 vSphere Web Client vulnerabilities (CVE-2021-21980, CVE-2021-22049) November 27, 2021
  • Attackers exploit Windows Installer zero-day vulnerability (CVE-2021-41379) November 24, 2021
  • FBI alert: APT actors exploit 0-Day FatPipe VPN vulnerabilities November 21, 2021
  • GitHub fixes 2 npm registry vulnerabilities November 20, 2021
  • Iranian state-sponsored APT actors target Microsoft Exchange and Fortinet vulnerabilities November 18, 2021
  • Google releases Chrome 96 security update (96.0.4664.45) with fixes for 25 vulnerabilities November 17, 2021
  • Squirrelwaffle uses Office docs to infect victim systems with CobaltStrike November 13, 2021
Copyright © 2021 Securezoo LLC. All rights reserved.