| by Arround The Web | No comments

Lightwell: Red Hat’s and IBM’s AI Defense Against AI-Based Attacks

The only elephant in the room isn’t in the oval office. For enterprises dependent on IT — meaning every enterprise on the planet these days — there’s an elephant in every server and in every data center. Unless you’re air-gapped, that’s any code that…

Read More
| by Arround The Web | No comments

FreeBSD Launches AI-Assisted Project to Find and Fix Vulnerabilities

With fresh funding from the Linux Foundation’s Alpha Omega initiative, FreeBSD is turning to AI tools and paid security staff to hunt vulnerabilities across its codebase.
The post FreeBSD Launches AI-Assisted Project to Find and Fix Vulnerabilities app…

Read More
| by Arround The Web | No comments

AUR Registrations Blocked Amid Ongoing Malware Mess

Arch has evidently stopped new AUR registrations for the time being while maintainers scrub malware and users debate how to harden the popular community repository.
The post AUR Registrations Blocked Amid Ongoing Malware Mess appeared first on FOSS For…

Read More
| by Arround The Web | No comments

AUR to Arch: ‘Houston, We’ve Got a Problem…We’re Under Attack Again’

Just hours after Arch sounded the all‑clear on a massive AUR malware purge, a new, stealthier campaign is slipping malicious code back into user packages.
The post AUR to Arch: ‘Houston, We’ve Got a Problem…We’re Under Attack Ag…

Read More
| by Arround The Web | No comments

Arch Says ‘All’s Clear’ After AUR Malware Incident Affects 1,500 Packages

Arch says it’s scrubbed all known malicious commits, but the 1,500‑plus affected AUR packages are a fresh reminder to “trust but verify.”
The post Arch Says ‘All’s Clear’ After AUR Malware Incident Affects 1,500 Packages appeared firs…

Read More
| by Arround The Web | No comments

Arch Devs Scramble as 400 AUR Packages Infected With Malware

Arch User Repository hit by a large-scale malware campaign, with maintainers racing to roll back malicious commits and lock out bad actors.
The post Arch Devs Scramble as 400 AUR Packages Infected With Malware appeared first on FOSS Force.

Read More
| by Arround The Web | No comments

Gaze – Simple New Facial Login & Authentication Method for Linux

Want to use your face to sign in or run process that needs authentication in your computer? There’s a new project to do the job in Linux! It’s Gaze, a free open-source Rust written app that provides simple GTK4 + libadwaita user interface for managing facial authentication, while, a CLI tool is also available for […]

Read More
| by Arround The Web | No comments

Fragnesia, ssh-keysign‑pwn, and the Month of Living Dangerously on Linux

From Copy Fail to Dirty Frag to Fragnesia and ssh-keysign‑pwn: AI‑driven bug hunters are turning the Linux kernel into a shooting gallery.
The post Fragnesia, ssh-keysign‑pwn, and the Month of Living Dangerously on Linux appeared first on FOSS Force.

Read More
| by Arround The Web | No comments

Dirty Frag, Copy Fail, and How Tails Under Tor Delivers ‘Open Source Done Right’

Two kernel zero‑day fixes, two quick Tails releases, and one Tor‑backed project determined to keep its privacy‑minded users safe — this is open source security hygiene in action.
The post Dirty Frag, Copy Fail, and How Tails Under Tor Delivers ‘O…

Read More
| by Arround The Web | No comments

Downloaded Cemu for Linux recently? You may have malware

If you recently downloaded the Cemu emulator for Linux from the project’s GitHub, be aware: it may have added malware to your system. The team behind the Wii U emulator discovered that both Linux builds of Cemu 2.6 on Github, the AppImage and a s…

Read More
| by Arround The Web | No comments

Exim Mail Server Hit by “Dead.Letter” TLS Flaw, Admins Told to Upgrade

Use-after-free bug in Exim’s GnuTLS BDAT handling lets remote attackers corrupt memory, with no workaround other than upgrading to version 4.99.3.
The post Exim Mail Server Hit by “Dead.Letter” TLS Flaw, Admins Told to Upgrade appeared first on FOSS Fo…

Read More
| by Arround The Web | No comments

A Simple One-Click Mitigation for ‘Copy Fail’ and ‘Dirty Frag’ for Debian, Ubuntu, Mint, and Other Debian‑Based Distros

A trusted Debian dev turns scary new kernel bugs into a temporary one‑click fix until distros ship permanent patches.
The post A Simple One-Click Mitigation for ‘Copy Fail’ and ‘Dirty Frag’ for Debian, Ubuntu, Mint, and Other Debian‑Based Distros appea…

Read More
| by Arround The Web | No comments

Ubuntu Snap Prompting Improvements

If you haven’t tried Ubuntu’s ‘Permission Prompting’ feature for a while, there’s more reason to do so in the latest release. Canonical’s Oliver Calder has shared an update on recent improvements to the security feat…

Read More
| by Arround The Web | No comments

Is It Panic Time? Linux’s Big Bad ‘Copy Fail’ Security Exploit

‘Copy Fail’ puts Linux users on alert as kernel patches race out and distros scramble to push them to the update channel.
The post Is It Panic Time? Linux’s Big Bad ‘Copy Fail’ Security Exploit appeared first on FOSS Force.

Read More
| by Arround The Web | No comments

Ubuntu 26.04’s sudo-rs gets a password feedback toggle

Ubuntu 26.04’s sudo-rs now includes a keypress toggle for password feedback. Switch between visible asterisks and silent input without editing a config file.
You’re reading Ubuntu 26.04’s sudo-rs gets a password feedback toggle, a blog post from …

Read More
| by Arround The Web | No comments

Hideout – Stupid Simple App to Encrypt Individual Files in Linux

Want to password protect your files in Linux? Here’s a stupid simple app to do the job for beginners. There are quite a few ways to secure your data in Linux, e.g., encrypt the whole disk, encrypt a folder, or compress files into encrypted archive. For individual files, the GPG (GNU Privacy Guard) command line […]

Read More
| by Arround The Web | No comments

Ubuntu 26.10 could drop btrfs, ZFS and LUKS support from GRUB

Ubuntu engineers are debating ways to reduce the number of features present in the signed version of GRUB, the boot loader used on systems with Secure Boot enabled. Canonical engineer Julian Klode proposes dropping support for /boot on btrfs, HFS+, XFS…

Read More
| by Arround The Web | No comments

Master Key for Linux’s Different Take on Password Management

A deterministic password manager that generates, rather than stores, your logins — and makes versioning old passwords surprisingly handy.
The post Master Key for Linux’s Different Take on Password Management appeared first on FOSS Force.

Read More
| by Arround The Web | No comments

Ubuntu 26.04 Now Shows Sudo Password Asterisk Feedback [How to Restore]

Ubuntu 26.04 LTS finally breaks the longstanding security tradition by now displaying the asterisk feedback when typing sudo password in terminal or command console. As you know, most Linux distributions by default do not show any feedback when user is inputting password in terminal or any other command console for sudo authentication. This is NOT […]

Read More
| by Arround The Web | No comments

Your Encryption May Not Survive Quantum — But Rocky Linux from CIQ’s Might

CIQ brings NIST‑approved post‑quantum crypto into Rocky Linux, turning quantum risk into a practical planning issue for sysadmins and regulated Linux shops.
The post Your Encryption May Not Survive Quantum — But Rocky Linux from CIQ’s Might appea…

Read More