HITB GSEC Singapore (August 21st - 25th)
Register Online Now!
Threat actors are actively exploiting a vulnerability in an older version of Elasticsearch software in order to add distributed denial-of-service (DDoS) malware in Amazon Elastic Compute Cloud (EC2) services.
Elasticsearch is an open source search server that can be used to look for various types of documents; its advantages include scalability, almost real-time search and support for multi-latency.
Think you're safe from spies because you're using Tails, the same Linux distribution that Edward Snowden uses to remain anonymous?
Unfortunately, you'll still have to be on your guard. Security firm Exodus Intelligence has revealed that the latest version of the OS, 1.1, is vulnerable to attacks that could be used to unmask your identity. The researchers say they won't publish details of the exploit until there's a patch, but the Tails team will have to wait up to a week before it gets a report it can use to whip up an emergency fix.
The first "preview" release of OpenSSL alternative LibreSSL is out, and already a researcher says he has found a "catastrophic failure" in the version for Linux.
If you manage a cloud or a datacenter, chances are you run CentOS, Red Hat Enterprise Linux (RHEL), SUSE Linux Enterprise Server (SLES), or Ubuntu. These are all great server Linux distributions, but none of them were designed to be deployed over hundreds or thousands of servers at once. Now there is such a distribution: CoreOS.
The open-source startup raises $8 million in funding to further its Docker container virtualization-based efforts.
The move toward a services-based approach for all IT is taking another step today with the launch of the CoreOS Managed Linux operating system as a service offering.