Cybernews

Linux users targeted: hackers invade Snap packages with crypto-stealing malware

Hackers are using domain squatting, taking over legitimate Snap packages, and infecting Linux users with crypto-stealing ...
Bleeping Computer

Malware Found in Arch Linux AUR Package Repository

The Arch Linux team has warned users for years about verifying each AUR package before installing it. The Arch Linux team is the second Linux distro that has found malware on its user-submitted ...
ZDNet

Linux Foundation's trust scorecards aim to battle rising open-source security threats

Open-source code has become a malware vector. For example, by the closest of shaves, an open-source developer discovered that Jia Tan, a chief programmer and maintainer of the Linux xz data ...
Bleeping Computer

Kali Linux warns of update failures after losing repo signing key

Offensive Security warned Kali Linux users to manually install a new Kali repository signing key to avoid experiencing update failures. The announcement comes after OffSec lost the old repo signing ...
Dark Reading

Malicious Python Repository Package Drops Cobalt Strike on Windows, macOS & Linux Systems

Public repositories of open source code are a critical part of the software supply chain that many organizations use to build applications. They are therefore an attractive target for adversaries ...
Ars Technica

Backdoor found in widely used Linux utility targets encrypted SSH connections

Researchers have found a malicious backdoor in a compression tool that made its way into widely used Linux distributions, including those from Red Hat and Debian. Because the backdoor was discovered ...