XDA Developers on MSN

20,000 Linux users grabbed a malicious Cemu build that steals passwords for coding and cloud credentials

Change your passwords if you were affected.
Threat Post

Audit of GitHub SSH Keys Finds Many Still Vulnerable to Old Debian Bug

An audit of the SSH keys associated with more than a million GitHub accounts shows that some users have weak, easily factorable keys and many more are using keys that are still vulnerable to the ...

Privilege escalation in Linux: Local users can read foreign files

The vulnerability was known for years, fixed Thursday. Hours later, an exploit is available as the kernel team prepares ...
Dark Reading

GitHub's Private RSA SSH Key Mistakenly Exposed in Public Repository

GitHub, a Microsoft subsidiary has replaced its SSH keys after someone inadvertently published its private RSA SSH host key part of the encryption scheme in an open GitHub repository. While some may ...
Bleeping Computer

GitHub now supports security keys when using Git over SSH

GitHub has added support for securing SSH Git operations using FIDO2 security keys for added protection from account takeover attempts. Researchers at North Carolina State University (NCSU) found [PDF ...
OSTechNix

Linus Torvalds Just Patched a 6-Year Old Major Linux “File Descriptor Theft” Vulnerability

Learn how the ptrace_may_access bug lets attackers steal root files like SSH keys and shadow file. Find out if your Linux ...