Read Time:9 Second
FEDORA-2022-63ca9a1129
Packages in this update:
vim-8.2.4460-1.fc35
Update description:
The newest upstream commit
Security fixes for CVE-2022-0714, CVE-2022-0729
vim-8.2.4460-1.fc36
Read Time:9 Second
FEDORA-2022-03cba3a31e
Packages in this update:
vim-8.2.4460-1.fc36
Update description:
The newest upstream commit
Security fixes for CVE-2022-0714, CVE-2022-0729
syncthing-1.18.6-3.el8
Read Time:15 Second
FEDORA-EPEL-2022-17ae719cb2
Packages in this update:
syncthing-1.18.6-3.el8
Update description:
This is a substantial update from 1.8.0 to 1.18.6. Notably this brings in the fix for CVE-2021-21404. The upstream version documentation says this update should be protocol compatible.
New Wiper Malware Discovered Targeting Ukrainian Interests
Read Time:1 Minute, 22 Second
FortiGuard Labs is aware of new wiper malware observed in the wild attacking Ukrainian interests. The wiper was found by security researchers today at ESET. Various estimates from both outfits reveal that the malware wiper has been installed on several hundreds of machines within the Ukraine. Cursory analysis reveals that wiper malware contains a valid signed certificate that belongs to an entity called “Hermetica Digital” based in Cyprus. This is a breaking news event. More information will be added when relevant updates are available. For further reference about Ukrainian wiper attacks please reference our Threat Signal from January. Also, please refer to our most recent blog that encompasses the recent escalation in Ukraine, along with salient advice about patch management and why it is important, especially in today’s political climate. Is this the Work of Nobelium/APT29?At this time, there is not enough information to correlate this to Nobelium/APT29 or nation state activity. Are there Other Samples Observed Using the Same Certificate?No. Cursory analysis at this time highlights that the Hermetica Digital certificate used by this malware sample is the only one that we are aware of at this time. Was the Certificate Stolen?Unknown at this time. As this is a breaking news event, information is sparse. Why is the Malware Signed?Malware is often signed by threat actors as a pretence to evade AV or any other security software. Signed malware allows for threat actors to evade and effectively bypass detection and guaranteeing a higher success rate. What is the Status of Coverage?FortiGuard Labs has AV coverage in place for publicly available samples as:W32/KillDisk.NCV!tr
Smashing Security podcast #263: Problèmes de Weefeee, AI artists, and Web 3.0
Read Time:20 Second
Ooh la la! Horreur Wi-Fi en France! Some folks have experienced the drawbacks of Web 3.0 as their NFTs are stolen, and should computers own the copyright over the art they produce?
All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Mark Stockley.
Friday Squid Blogging: Squid Videos
kernel-5.16.11-100.fc34
Read Time:9 Second
FEDORA-2022-edbd74424e
Packages in this update:
kernel-5.16.11-100.fc34
Update description:
The 5.16.11 stable kernel update contains a number of important fixes across the tree.
kernel-5.16.11-200.fc35
Read Time:9 Second
FEDORA-2022-952bb7b856
Packages in this update:
kernel-5.16.11-200.fc35
Update description:
The 5.16.11 stable kernel update contains a number of important fixes across the tree.
seamonkey-2.53.11-1.el7
Read Time:40 Second
FEDORA-EPEL-2022-af77a11507
Packages in this update:
seamonkey-2.53.11-1.el7
Update description:
Update to 2.53.11
Default version of Firefox for the User-Agent string has now been changed to 68.0 . This should provide better compatibility with modern sites. The value can be changed in Preferences–>Advanced–>HTTP Networking .
Besides that, an alternate site-specific override machanism is now activated. (The idea comes from Waterfox-Classic project). The file ua-update.json in the application dir is now additionally used for a list of overrides. You can copy it into your profile and edit if needed (be careful with format.) The “general.useragent.override.*” way continues to work and takes precedence. The new mechanism can be toggled by “general.useragent.updates.enabled” prefs (in about:config).
seamonkey-2.53.11-1.el8
Read Time:40 Second
FEDORA-EPEL-2022-b2015c9ac8
Packages in this update:
seamonkey-2.53.11-1.el8
Update description:
Update to 2.53.11
Default version of Firefox for the User-Agent string has now been changed to 68.0 . This should provide better compatibility with modern sites. The value can be changed in Preferences–>Advanced–>HTTP Networking .
Besides that, an alternate site-specific override machanism is now activated. (The idea comes from Waterfox-Classic project). The file ua-update.json in the application dir is now additionally used for a list of overrides. You can copy it into your profile and edit if needed (be careful with format.) The “general.useragent.override.*” way continues to work and takes precedence. The new mechanism can be toggled by “general.useragent.updates.enabled” prefs (in about:config).