Electropages

Apache Traffic Server Flaws Expose Fresh Open-Source Security Risks

New vulnerabilities in Apache Traffic Server highlight the growing security burden facing critical open-source infrastructure.
ZDNet

Stantinko's Linux malware now poses as an Apache web server

Stantinko, one of the oldest malware botnets still operating today, has rolled out updates to its class of Linux malware, upgrading its trojan to pose as the legitimate Apache web server process ...
Infosecurity-magazine.com

Flaw in Apache ActiveMQ Exposes Linux Systems to Kinsing Malware

A critical vulnerability in Apache ActiveMQ, identified as CVE-2023-46604, has been exposed, revealing an active exploitation scenario by the notorious Kinsing malware. According to an advisory ...
Ars Technica

Thousands of Linux systems infected by stealthy malware since 2021

Thousands of machines running Linux have been infected by a malware strain that’s notable for its stealth, the number of misconfigurations it can exploit, and the breadth of malicious activities it ...
InfoQ

Linux Security Tools Bypassed by io_uring Rootkit Technique, ARMO Research Reveals

Security researchers at ARMO have uncovered a significant vulnerability in Linux runtime security tools that stems from the io_uring interface, an asynchronous I/O mechanism that can completely bypass ...
Infosecurity-magazine.com

Linux Malware Targets Docker, Apache Hadoop, Redis and Confluence

Security researchers have uncovered an emerging malware campaign targeting misconfigured servers hosting web-facing services like Apache Hadoop YARN, Docker, Confluence and Redis. This campaign is ...