What's Your IT Question?

Want to know more about this topic or about us? Contact us!

All posts in Linux

S3 Ep38: Clop busts, destructive Linux hacking, and rooted bicycles [Podcast]

by Paul Ducklin [05’06”] Ukrainian cops bring out the BFG (Big Fearsome Grinder) and cut open some doors.  [10’23”] A repeated request for destructive Linux code enters its 15th year.  [19’39”] Peloton exercise bicycles found to be rootable.  [28’43”] What’s the point of paying ransomware money?   [33’53”] Oh! No! of the week With Kimberly Truong, Doug Aamoth and . . . Read more

S3 Ep30: AirDrop worries, Linux pests and ransomware truths [Podcast]

by Paul Ducklin We investigate whether AirDrop is really as dangerous as researchers claimed. We discuss the pestiferous problem of fake Linux bugs submitted as an academic exercise. We review the latest Sophos Ransomware Report and uncover uncomfortable truths about paying up. With Kimberly Truong, Doug Aamoth and Paul Ducklin. . . . Read more

Pwn2Own 2021: Zoom, Teams, Exchange, Chrome and Edge “fully owned”

by Paul Ducklin The annual Pwn2Own contest features live hacking where top cybersecurity researchers duke it out under time pressure for huge cash prizes. Their quest: to prove that the exploits they claim to have discovered really do work under real-life conditions. Indeed, Pwn2Own is a bug bounty program with . . . Read more

S3 Ep25: Drained accounts, ransomware attacks and Linux badware [Podcast]

by Paul Ducklin How a social engineer ripped off a victim lured in by one of those “small outstanding fee to pay” home delivery scams. The ransomware crooks targeting networks that still haven’t done their Hafnium patches. And the Linux kernel security holes that lay there undiscovered for 15 years. . . . Read more

S3 Ep18: Apple emergency, crypto blunder and botnet takedown [Podcast]

by Paul Ducklin Apple pushed out an iOS update in something of a hurry to shut down a serious 0-day bug. The GnuPG team scrambled to fix an ironic vulnerability that could be exploited during the very process of checking if the data you just received could be trusted. And . . . Read more

ElectroRAT Drains Cryptocurrency Wallet Funds of Thousands

At least 6,500 cryptocurrency users have been infected by new, ‘extremely intrusive’ malware that’s spread via trojanized macOS, Windows and Linux apps. A new remote access tool (RAT) has been discovered being used in an extensive campaign. The attack has targeted cryptocurrency users in an attempt to collect their private . . . Read more