Critical vulnerabilities found in Linux and TorchServe.
Welcome to Cyber Security Today. It’s Wednesday, October 4th, 2023. I’m Howard Solomon, contributing reporter on cybersecurity for ITWorldCanada.com and TechNewsday.com in the U.S.
Linux administrators are being urged to patch their operating systems to close a just-discovered 16-month-old vulnerability. Default installations of Fedora, Ubutu and Debian are open to being exploited, say researchers at Qualys. The hole is a buffer overflow vulnerability which can give an attacker full root privileges. The researchers believe threat actors can easly produce an exploit. It’s imperative system administrators act swiftly, the researchers say. Only those using Alpine Linux are exempt from being hit by this particular hole.
Executives are being warned to be wary of email messages that appear to come from a someone they trust who references a job application or resume on the Indeed employment platform. If a link in the message is clicked, instead of going to Indeed the victim is redirected to a fake Microsoft login page. If the victim logs in the attacker steals their session cookie. That cookie allows the attacker to…
