A Hack Nearly Gained Access To Millions of Computers Here’s What We Should Learn From This

Getty Images

One of the most fascinating and frightening incidents in computer security history started in 2022 with a few pushy emails to the mailing list for a small, one-person open source project. A user had submitted a complex bit of code that was now waiting for the maintainer to review. But a different user with the name Jigar Kumar felt that this wasn’t happening fast enough.

“Patches spend years on this mailing list,” he complained. “5.2.0 release was 7 years ago. There is no reason to think anything is coming soon.”A month later, he followed up: “Over 1 month and no closer to being merged. Not a suprise.” [sic]. And a month after that: “Is there any progress on this?” Kumar stuck around for about four months complaining about the pace of updates and then was never heard from again.

A few weeks ago, the world learned a shocking twist. “Jigar Kumar” does not seem to exist at all. There are no records of any person by that name outside the pushy emails. He — along with a number of other accounts — was apparently part of a campaign to compromise nearly every Linux-running computer in the world. (Linux is an open source operating system — as opposed to closed systems from companies like Apple — that runs on tens of millions of devices.)….Story continues…

By: Kelsey Piper 

Source: A near-miss hack of Linux shows the vulnerability of the internet

.

Read more:

2024 Cybersecurity Symposium: Protecting the United States and European Union From Cyber Threats Council on Foreign Relations 22:58 

Cybersecurity in Space: Why Hacking Has Gone Off World Government Technology 22:40 

In the last 2 hours

Blaze News investigates: Cybersecurity expert says he accidentally discovered ‘disturbing’ data transfers from TikTok: ‘The app should be banned’The Blaze 22:06 

Threat Versus Risk: Rethinking Cybersecurity Fundamentals InfoRiskToday 21:57 

Navigating AI and cybersecurity: NetApp’s role in government innovation SiliconANGLE 21:45 

In the last 4 hours

North’s stakeholders okay cybersecurity act The Nation, Nigeria 20:59 

Palo Alto Networks and IBM Align Cybersecurity Strategies Security Boulevard 20:23 

Unveiling the Underworld of Bank Breaches: Navigating the Digital Frontlines of Financial Cybersecurity Security Boulevard 20:23 

Nwosu Hails Suspension Of Cybersecurity Levy Independent Nigeria 20:08 

Racing Ahead: Privacy, Cybersecurity, and AI Heats for the Life Insurance Industry JD Supra 20:05 

Top Takeaways from RSAC 2024: A Cybersecurity Deep Dive GlobeNewswire (Press Release) 19:54 

In the last 6 hours

The Role of Identity and Access Management in K-12 Cybersecurity Security Boulevard 19:32 

Adobe Global Chief Privacy And Cybersecurity Legal Officer Nubiaa Shabaka On Trust, Data Security And AI Forbes 19:11 

Keeper Security Achieves Nine-Win Victory in 2024 Cybersecurity Excellence Awards PR Newswire (Press Release) 18:31 

In the last 8 hours

Kyiv, Cisco sign partnership memo on digital infrastructure development, cybersecurity Interfax-Ukraine 17:29 

Saviynt’s Identity Cloud Recognized as Best Cloud Identity Management by the Cybersecurity Excellence Awards Business Wire (Press Release) 17:24 

Cybeats Joins U.S. Cybersecurity Initiative TipRanks 17:00 

We’re trimming an up-and-down cybersecurity stock that’s rallying into earnings next week CNBC 16:39 

Traliant Spotlights Sexual Harassment Prevention, Data Privacy and Cybersecurity Training at ATD24 Conference PRWeb (Press Release) 16:36 

Cybersecurity levy in Nigeria: Can a nation tax itself to prosperity? BusinessDay NG 16:01 

MediSecure Website Shuts Down After Ransomware Attack; Federal Police Probe Cybersecurity Breach International Business Times – AU Edition 15:41 

Earlier Today

Navigating Yesterday’s Battles: Insights from Cybersecurity Reports Security Boulevard 15:09 

Positive Approaches to Cybersecurity Training InformationWeek 14:31 

The Cybersecurity Survival Guide For Generative AI Forbes 14:02 

Last year’s cybersecurity issues could still be this year’s nightmares BetaNews 13:59 

Thoma Bravo’s LogRhythm merges with Exabeam in more cybersecurity consolidation TechCrunch 13:50 

The Cybersecurity Implications Of Gen Z’s Tech-Savvy Lifestyle Forbes 12:51 

iTech Software Offers a New Enterprise-grade Cybersecurity Solution for Brokers ForexLive.com 12:51 

Yul Edochie hails Tinubu for suspending cybersecurity levy Gistlover 12:47 

“RiskFlow Orchestration” Wins at the 2024 Cybersecurity Excellence Awards EU Reporter 12:35 

iTech Software Unveils Enterprise-Grade Cybersecurity Solution for Brokers FinanceFeeds 12:25 

Cybersecurity strategies prompt wider fleet move to specialist software, reports FleetCheck Fleet World 12:09 

Nigeria Halts Cybersecurity Tax After Public Outrage Dark Reading 11:34 

SentinelOne: Revisiting This Fast-Growing Cybersecurity Name (Rating Upgrade) Seeking Alpha 09:46 

Senetas taps into rising global cybersecurity market with record deal Stockhead 09:38 

PwC launches cybersecurity-focused centre in Cork Silicon Republic 09:02 

IIJ’s “Safous” Zero Trust Access Wins 2024 Cybersecurity Excellence Award for Best Zero Trust Solution Antara News 07:53 

The critical role of IT staffing in strengthening cybersecurity Help Net Security 06:31 

Lithuania ready to assist Nepal in digitalisation, cybersecurity The Kathmandu Post 05:15 

Palo Alto Networks to ‘change how cybersecurity is done’ with AI launch: CPO Lee Klarich CRN Australia 03:47 

LogRhythm and Exabeam announce merger to enhance AI-driven cybersecurity solutions SiliconANGLE 03:43 

The biggest foreign threats to 2024 election National security officials testified Wednesday on Capitol Hill about foreign threats to the upcoming presidential election. Former Cybersecurity and Infrastructure Security Agency Director Chris Krebs joins CBS News to discuss this cycle’s biggest concerns and how the government plans to address them. 1H ago 04:29CBS News 03:29 

PwC launches Cork-based cybersecurity centre amidst boom in workplace AI Sunday Business Post 02:51 

Towards Responsible Innovation: US Initiatives in AI Safety and Cybersecurity Hacker Noon 02:43 

AUSCERT outlines budget impact on cybersecurity Asia Pacific Defence Reporter 02:41 

Yesterday

EU and US Advance Bilateral Talks on AI, Cybersecurity Data Breach Today 01:39 

FTCCybersecurity and Data Privacy Roundup JD Supra 01:23 

Growing Influence of Hyperscalers in Cybersecurity Markets InfoRiskToday 01:19 

How AI Is Transforming Cybersecurity Models and Practices InfoRiskToday 00:58 

AI in Cybersecurity Investing: Opportunities and Risks InfoRiskToday 00:58 

Client Alert: White House Releases Report on US Cybersecurity Posture JD Supra 00:52 

The Convergence of Policy and Technology in Cybersecurity GovInfoSecurity 00:39 

Live Webinar | Practical Strategies for Accelerating AI Adoption in Cybersecurity Data Breach Today 00:18 

Russian FSB-linked hacking group Turla “likely” behind new backdoors on a European government network, as per Slovak cybersecurity firm ESET The Insider 23:58 Wed, 15 May 

Resecurity Honored with President’s “E Star” Award – Recognized Leader in Cybersecurity Exports Business Wire (Press Release) 23:41 Wed, 15 May 

Only telcos, banks, NSE, internet service providers will pay Cybersecurity levy — Reps Tribune Online 23:06 Wed, 15 May 

UK Government Unveils New AI Cybersecurity Measures as ICO Details Importance of Data Protection The Fintech Times 22:04 Wed, 15 May 

Will NZ’s new cybersecurity strategy match Aussies’ bold one? BusinessDesk 20:51 Wed, 15 May 

Cybersecurity Regulations on the March JD Supra 20:37 Wed, 15 May 

Conversant Group and Sister Company, Grypho5, Named Winners in the Cybersecurity Excellence Awards PR Newswire (Press Release) 20:32 Wed, 15 May 

Share this:

• Click to Press This! (Opens in new window)
• Click to email a link to a friend (Opens in new window)
• Click to share on Reddit (Opens in new window)
• Click to share on Telegram (Opens in new window)
• Click to share on Stumbleupon (Opens in new window)
• Click to share on Tumblr (Opens in new window)
• Click to share on WhatsApp (Opens in new window)
• More

Customize buttons

Loading…

campaign computer computers fascinating frightening hack learn linux millions Security