Month: January 2022

A Bug Lurking For 12 Years Gives Attackers Root On Every Major #Linux Distro

[no content]

Source: A Bug Lurking For 12 Years Gives Attackers Root On Every Major Linux Distro


FBI, NSA and CISA Warns of Russian Hackers Targeting Critical Infrastructure

Amid renewed tensions between the U.S. and Russia over Ukraine and Kazakhstan, American cybersecurity and intelligence agencies on Tuesday released a joint advisory on how to detect, respond to, and mitigate cyberattacks orchestrated by Russian state-sponsored actors.

Source: FBI, NSA and CISA Warns of Russian Hackers Targeting Critical Infrastructure


Researchers Find Bugs in Over A Dozen Widely Used URL Parser Libraries

A study of 16 different Uniform Resource Locator (URL) parsing libraries has unearthed inconsistencies and confusions that could be exploited to bypass validations and open the door to a wide range of attack vectors. In a deep-dive analysis jointly conducted by cybersecurity firms Claroty and Synk, eight security vulnerabilities were identified in as many third-party libraries written in C,

Source: Researchers Find Bugs in Over A Dozen Widely Used URL Parser Libraries


New Trick Could Let Malware Fake iPhone Shutdown to Spy on Users Secretly

Researchers have disclosed a novel technique by which malware on iOS can achieve persistence on an infected device by faking its shutdown process, making it impossible to physically determine if an iPhone is off or otherwise. The discovery — dubbed “NoReboot” — comes courtesy of mobile security firm ZecOps, which found that it’s possible to block and then simulate an iOS rebooting operation,

Source: New Trick Could Let Malware Fake iPhone Shutdown to Spy on Users Secretly