LinuxWebLog.com

I've been using these 8 core Linux commands wrong for years  How-To Geek

Microsoft Stock Slips as GOG Eyes Linux Release to Escape Windows’ ‘Poor-Quality Software and Product’  TipRanks

Fedora Games Lab Approved To Switch To KDE Plasma, Become A Better Linux Gaming Showcase  Phoronix

$99 BeaglePlay Board Achieves "100% Open-Source" Upstream PowerVR Graphics  Phoronix

Chinese-Linked VoidLink Malware Targets Linux Clouds and Kubernetes  WebProNews

Linux Mint 22.3 Brings a Refined Upgrade Experience  findarticles.com

How To Check RHEL Version in Linux  About Chromebooks

VoidLink: The Cloud-Native Malware Framework Weaponizing Linux Infrastructure  CXOToday.com

Linux distro designed to look like Windows hits 2 million downloads since the end of Windows 10 support  PC Guide

Intel Panther Lake GSC Firmware Published Ahead Of Laptop Availability  Phoronix

Experts warn this new Chinese Linux malware could be preparing something seriously worrying  TechRadar

Experts warn this new Chinese Linux malware could be preparing something seriously worrying  TechRadar

5 popular Linux terminal-based file managers—ranked  How-To Geek

An anonymous reader quotes a report from Ars Technica: Researchers have discovered a never-before-seen framework that infects Linux machines with a wide assortment of modules that are notable for the range of advanced capabilities they provide to attackers. The framework, referred to as VoidLink by its source code, features more than 30 modules that can be used to customize capabilities to meet attackers' needs for each infected machine. These modules can provide additional stealth and specific tools for reconnaissance, privilege escalation, and lateral movement inside a compromised network. The components can be easily added or removed as objectives change over the course of a campaign. VoidLink can target machines within popular cloud services by detecting if an infected machine is hosted inside AWS, GCP, Azure, Alibaba, and Tencent, and there are indications that developers plan to add detections for Huawei, DigitalOcean, and Vultr in future releases. To detect which cloud service hosts the machine, VoidLink examines metadata using the respective vendor's API. Similar frameworks targeting Windows servers have flourished for years. They are less common on Linux machines. The feature set is unusually broad and is "far more advanced than typical Linux malware," said researchers from Checkpoint, the security firm that discovered VoidLink. Its creation may indicate that the attacker's focus is increasingly expanding to include Linux systems, cloud infrastructure, and application deployment environments, as organizations increasingly move workloads to these environments. "VoidLink is a comprehensive ecosystem designed to maintain long-term, stealthy access to compromised Linux systems, particularly those running on public cloud platforms and in containerized environments," the researchers said in a separate post. "Its design reflects a level of planning and investment typically associated with professional threat actors rather than opportunistic attackers, raising the stakes for defenders who may never realize their infrastructure has been quietly taken over." The researchers note that VoidLink poses no immediate threat or required action since it's not actively targeting systems. However, defenders should remain vigilant.

Read more of this story at Slashdot.

Niche Linux System Becomes a 'Phenomenal Hit' Forced by Microsoft: 2M Downloads in 3 Months, 1.5M Windows Users 'Defect'  36氪

GOG leadership turns on Windows as Linux is considered  Windows Central

Netrunner Rolling 2019.04 Arch-based Linux distribution available for download  BetaNews

New "Thames" Linux Accelerator Driver Posted Along With Companion Gallium3D Driver  Phoronix

New Linux malware framework targets cloud and containers  Techzine Global

New Linux malware detected: admins “may never realize their infrastructure has been quietly taken over”  Cybernews