Linux struggles with worst security vulnerability in years

Linux struggles with worst security vulnerability in years

Washington, Mar. 11, 2022

A vulnerability discovered in Linux makes it easy for untrusted users to execute code that can trigger a variety of malicious actions. „Dirty Pipe“ is one of the most serious Linux threats disclosed since 2016.

Hackers can install backdoors, create unauthorized user accounts, and modify scripts or binaries used by privileged services or applications.

The vulnerability first appeared in Linux kernel version 5.8, which was released in Aug. 2020. Researchers in 2016 showed how to exploit „Dirty Cow,“ a vulnerability that could be used at the time to root any Android phone, regardless of the mobile operating system version.

Three cybersecurity companies have offered free protection to U.S. hospitals. Cloudflare, CrowdStrike and Ping Identity are the companies willing to protect U.S. hospitals.

The U.S. government’s Cybersecurity and Infrastructure Security Agency has asked all organizations affected in the U.S. to shut down their systems due to the increased threat of cyberattacks.

Cloudflare, CrowdStrike and Ping Identity stated that the help is due to the CISA announcement. The goal of these companies is to provide a complete package of security best practices. Hospitals, energy and water utilities are the areas that will be protected.