A major Linux package scare just exposed how dangerous trust-based software ecosystems can get when abandoned packages fall ...

Generally, mainstream malware attacks tend to focus on consumer-oriented operating systems like Windows. It’s rare that Linux is specifically targeted which makes this discovery concerning. Linux ...

On the first day of Pwn2Own Vancouver 2024, contestants demoed 19 zero-day vulnerabilities in Windows 11, Tesla, Ubuntu Linux and other devices and software to win $732,500 and a Tesla Model 3 car.

Attackers hijacked over 1,500 packages in Arch Linux's AUR to plant a credential stealer. The official repos are safe, but the trust model took the hit.

As attacks on the operating system grow more serious, the company is teasing a plan to bring “verifiable integrity” to Linux. If there’s one thing guaranteed to grab attention in the computer security ...

A new Linux backdoor called 'WolfsBane' has been discovered, believed to be a port of Windows malware used by the Chinese 'Gelsemium' hacking group. ESET security researchers who analyzed WolfsBane ...

A Chinese hacking group, called Evasive Panda (or DaggerFly), has found a new way to attack Linux-based network devices. By using the SSH (Secure Shell) daemon, the group adds malware to systems, ...

Version 3.0 of BackTrack has been released. BackTrack is a Linux-based distribution dedicated to penetration testing or hacking (depending on how you look at it). It contains more than 300 of the ...

Hacking: The Art of Exploitation, 2nd Edition (Jon Erickson, No Starch Press, 2008) is an intense, thorough and extremely well written book that can take you from basic hacking concepts to building ...