Open navigation menu

Welcome to Everand!

Linux Format

Keys and signatures

Mar 09, 2021 4 minutes

linuxforuk2104_article_038_01_01

linuxforuk2104_article_038_01_02

The devastating attack on Solar Winds discovered in December 2020 shows how a single weak link can undo even the most thoughtful security regimen. Here a supply chain attack was used to ship poisoned updates to its Orion software, used by thousands of customers worldwide to manage their infrastructure.

These customers include several US government departments and major tech companies, and since the malware it bundled was so stealthy, many of them had no way of knowing what data was stolen or for how long it was accessible. Similar attacks have targeted Windows updates (for example, the malware in 2012) and more recently the EncroChat messaging system, whose update mechanism was compromised by police in 2020, leading to 800 arrests across Europe.

You’re reading a preview, subscribe to read more.

Start your free 30 days

Sharing Options

More from Linux Format

Linux Format5 min read

Tips For Managing Docker Containers

Everyone knows how containers revolutionised application building and deployment. Using a E disposable stack of containers that make up an app that aren’t using the docker-compose command to manage the stack are missing a trick. It allows the shippin

Linux Format1 min read

Installation Complications

The Linux Mint system package for Timewarrior was out of date, so we installed the latest version from Snap. The Hamster package in the distribution repository was the latest stable release (which is quite old), but we could also have installed via F

Linux Format3 min read

We love the idea of a gaming-specific version of Linux, but Drauger fails to deliver. Given the setup/kernel issues, you’re far better off installing Ubuntu, then adding gamingspecific packages yourself. CPU: 1.8GHz (2GHz suggested) Mem: 1GB (6GB sug

Related Books & Audiobooks

SSH Mastery: OpenSSH, PuTTY, Tunnels and Keys - 2nd edition: IT Mastery, #12
Ebook
SSH Mastery: OpenSSH, PuTTY, Tunnels and Keys - 2nd edition: IT Mastery, #12
byMichael Lucas
Rating: 0 out of 5 stars
0 ratings
Next Generation SSH2 Implementation: Securing Data in Motion
Ebook
Next Generation SSH2 Implementation: Securing Data in Motion
byDale Liu
Rating: 0 out of 5 stars
0 ratings
Hack into your Friends Computer
Ebook
Hack into your Friends Computer
byMagelan Cyber Security
Rating: 0 out of 5 stars
0 ratings
How To Do Virtualization: Your Step By Step Guide To Virtualization
Audiobook
How To Do Virtualization: Your Step By Step Guide To Virtualization
byHowExpert
Rating: 0 out of 5 stars
0 ratings
Learn Blockchain by Building One: A Concise Path to Understanding Cryptocurrencies
Ebook
Learn Blockchain by Building One: A Concise Path to Understanding Cryptocurrencies
byDaniel van Flymen
Rating: 0 out of 5 stars
0 ratings
Red Hat Enterprise Linux 9 Essentials: Learn to Install, Administer, and Deploy RHEL 9 Systems
Ebook
Red Hat Enterprise Linux 9 Essentials: Learn to Install, Administer, and Deploy RHEL 9 Systems
bySmyth
Rating: 0 out of 5 stars
0 ratings
Virtual Private Networking: A Construction, Operation and Utilization Guide
Ebook
Virtual Private Networking: A Construction, Operation and Utilization Guide
byGilbert Held
Rating: 0 out of 5 stars
0 ratings
C++17 Quick Syntax Reference: A Pocket Guide to the Language, APIs and Library
Ebook
C++17 Quick Syntax Reference: A Pocket Guide to the Language, APIs and Library
byMikael Olsson
Rating: 0 out of 5 stars
0 ratings
Ethereal Packet Sniffing
Ebook
Ethereal Packet Sniffing
bySyngress
Rating: 0 out of 5 stars
0 ratings
Data Warehousing: Optimizing Data Storage And Retrieval For Business Success
Audiobook
Data Warehousing: Optimizing Data Storage And Retrieval For Business Success
byRob Botwright
Rating: 0 out of 5 stars
0 ratings
Online Identity A Complete Guide - 2020 Edition
Ebook
Online Identity A Complete Guide - 2020 Edition
byGerardus Blokdyk
Rating: 0 out of 5 stars
0 ratings