Linux Journal

Linux Kernel Runtime Guard Reaches 1.0: A Major Milestone for Runtime Kernel Security

LKRG is a loadable kernel module designed to protect the Linux kernel at runtime. Instead of relying solely on compile-time ...
SecurityWeek

New ‘SSHStalker’ Linux Botnet Uses Old Techniques

The SSHStalker Linux botnet has ensnared 7,000 systems, deploying various scanners and malware, an IRC bot, and multiple kernel exploits.
Linux Journal

Inside the Linux Kernel Runtime Guard (LKRG): A New Layer of Kernel Integrity Protection

LKRG (short for Linux Kernel Runtime Guard) is a loadable kernel module that continuously monitors the health and integrity ...
Bleeping Computer

North Korean hackers exploit Chrome zero-day to deploy rootkit

North Korean hackers have exploited a recently patched Google Chrome zero-day (CVE-2024-7971) to deploy the FudModule rootkit after gaining SYSTEM privileges using a Windows Kernel exploit. "We assess ...
Hackaday

Exploring The Anatomy Of A Linux Kernel Exploit

A lot of talk and discussion happens anytime a hardware manufacturer releases a new line of faster, more powerful, or more efficient computers. It’s easy to see better and better specifications and ...
CSO Online

Attackers exploit decade‑old Windows driver flaw to shut down modern EDR defenses

Attackers abused a signed but long-revoked EnCase Windows kernel driver in a BYOVD attack to terminate all security tools.
Network World

Kernel space: Details of the vmsplice() exploit

A recent Linux security hole allows local users to seize the power of root. We show the Linux bugs that came together to let it happen. Once all this has happened, control returns to vmsplice_to_pipe( ...
Android Police

Kernel: What it is, and why it's essential for your computer, smartphone, and tablet

Stephen is an author at Android Police who covers how-to guides, features, and in-depth explainers on various topics. He joined the team in late 2021, bringing his strong technical background in ...