Skip to main content
FreeIntelHub
Feed Threat Feed Search Trending
Intelligence CVE Priority Vulnerability IOC Lookup IOC Feed YARA Rules Phishing Lookup Exploit Lookup Pastes Dark Web
Adversaries Threat Groups Software Campaigns
Explore Dashboard Geo Map Heatmap MITRE ATT&CK
Browse Sources Vendors Categories Sectors
RSS API
FreeIntelHub
/
Sign In

Linux

20 articles

The Hacker News Malware Linux Jun 12

400+ Arch Linux AUR Packages Hijacked to Install Rust Credential Stealer

Attackers took over more than 400 packages in the Arch User Repository (AUR) this week and rewrote their build scripts to install a credential stealer on any...

The Hacker News →

The Hacker News General Linux Jun 12

China-Linked Hackers Backdoored Linux Login Software to Hide for Nearly a Decade

Instead of hiding on the laptops and servers defenders watch most closely, a China-nexus group spent close to a decade hidden inside the Linux login system i...

The Hacker News →

HackRead Campaigns Linux Jun 12

Atomic Arch Campaign Hijacks 20+ Linux AUR Packages to Deliver Malware

Over 20 Linux packages were compromised in the Atomic Arch campaign, which abuses AUR ownership transfers to drop rootkit-like malware.

HackRead →

BleepingComputer Malware Linux Jun 12

Over 400 Arch Linux packages compromised to push rootkit, infostealer

More than 400 packages in the Arch User Repository (AUR) are distributing a Linux rootkit and infostealer malware targeting credentials and access tokens. [.

BleepingComputer →

Help Net Security Phishing Linux Jun 11

Proxmox releases Mail Gateway 9.1 with quarantine and backup encryption changes

Proxmox Mail Gateway 9.1 adds updated system components, changes to the spam quarantine interface, and encryption for backups.

T1566

Help Net Security →

GBHackers CVE Linux Jun 11

PoC Exploit Released for Linux Kernel Guest-to-Host Escape Vulnerability

A proof-of-concept (PoC) exploit has been publicly released for a critical Linux kernel vulnerability, tracked as CVE-2026-46316, enabling guest-to-host esca...

1 IOC

GBHackers →

Help Net Security General Linux AMD Jun 10

NOVA microhypervisor brings AMD DMA isolation to shared AI infrastructure

BlueRock has issued the latest open-source release of its NOVA Microhypervisor with DMA remapping support for AMD platforms that have IOMMU hardware virtuali...

Help Net Security →

GBHackers CVE Linux Jun 9

Linux Kernel Flaw Allows Local Attackers to Gain Root Privileges

A newly disclosed Linux kernel vulnerability tracked as CVE-2026-23111 allows local attackers to escalate privileges to root by exploiting a use-after-free f...

1 IOC

GBHackers →

Security Affairs CVE Linux Intel Jun 9

CVE-2026-23111: Linux nf_tables Flaw Enables Root Exploits

A Linux kernel nf_tables bug lets local users gain root via use-after-free caused by a logic error; patch removes a single “!”.

T1548 T1068 1 IOC

Security Affairs →

The Hacker News CVE Linux Intel Docker Jun 8

One-Character Linux Kernel Flaw Enables Local Root Access, Exploits Now Public

Security researchers have published a detailed, working exploit for a Linux kernel use-after-free that lets an unprivileged local user escalate to root and b...

1 IOC

The Hacker News →

The Hacker News Malware Linux Jun 5

IronWorm and New Miasma Worm Variant Hit npm in Supply Chain Attacks

Multiple software supply chain attacks have hit the npm ecosystem, with threat actors using both malicious and poisoned versions of over 50 legitimate packag...

T1195

The Hacker News →

GBHackers CVE Linux Jun 5

New Gafgyt Variant Targets Linux Systems With Modular Spread Tactics

A new Gafgyt-family botnet, tracked as C0XMO, marks a notable technical shift in IoT malware design: the separation of scanning and propagation into distinct...

1 IOC

GBHackers →

GBHackers CVE Linux Jun 5

CISA Issues Alert on Actively Exploited Linux Kernel Security Flaw

The U.S.

1 IOC

GBHackers →

GBHackers Campaigns Linux Jun 5

Chinese APT VerdantBamboo Targets Appliances with BRICKSTORM Malware

BRICKSTORM is a modular remote access trojan (RAT) originally seen in Golang and later in Rust. It uses a wssoft library with pluggable “tasks” for shell com...

GBHackers →

SecurityWeek Vulnerability Disclosure Linux Docker Jun 3

Organizations Warned of Exploited Linux Kernel Vulnerability

An improper authentication bug allows attackers to escalate their privileges and escape containers. The post Organizations Warned of Exploited Linux Kernel V...

SecurityWeek →

Zero Day Initiative CVE Linux Docker Jun 3

ZDI-26-327: Docker Desktop grpcfuse Kernel Module Uncontrolled Recursion Denial-of-Service Vulnerability

This vulnerability allows local attackers to create a denial-of-service condition on affected installations of Docker Desktop. An attacker must first obtain ...

1 IOC

Zero Day Initiative →

Help Net Security General Linux Jun 2

KDE Linux security audit cuts kernel modules and unused packages

KDE Linux, the in-progress operating system from the KDE community, removed several kernel modules and software packages after a security audit of the compon...

Help Net Security →

Help Net Security General Linux Jun 2

RSA extends passwordless authentication to Linux environments

RSA has expanded its passwordless authentication capabilities to Linux environments, advancing its goal of delivering secure, password-free access for every ...

Help Net Security →

SC Media Vulnerability Disclosure Linux Jun 1

New CIFSwitch vulnerability allows Linux privilege escalation

The CIFSwitch vulnerability, which was discovered by SpaceX Security Engineer Asim Viladi Oglu Manizada, impacts multiple Linux distributions that use vulner...

T1548

SC Media →

SecurityWeek Vulnerability Disclosure Linux Jun 1

19-Year-Old Linux Kernel Vulnerability Exposes Systems to Root Access

proof-of-concept (PoC) exploit code has been released for the CIFSwitch flaw, which allows low-privileged users to escalate to root on vulnerable Linux syste...

SecurityWeek →

«Previous page 1 2 3 4 5 ... 8 Next page»
FreeIntelHub · Open-source CTI platform

All articles belong to their respective owners. FreeIntelHub aggregates publicly available RSS feeds for informational purposes only. DMCA