Security news aggregator

Latest coverage for Root

Discover the latest on root information security: expert insights, threat updates, and best practices to safeguard your digital assets. Stay secure!

260 headlines in this view

Root is a term that signifies the highest level of privilege on a computer or a network system, particularly in Unix and Linux environments. It is the account that has unrestricted access to all commands and files on an operating system. In the context of information security, the root account plays a pivotal role because if it's compromised, a hacker gains complete control over the system, potentially allowing them to alter system configurations, access confidential data, install malware, and execute any operation without restriction. Consequently, safeguarding the root account with robust passwords, limited access, and constant monitoring is essential for maintaining the security and integrity of any computer system or network.

Showing 20 most recent headlines of 260 Filtered view

Security Affairs 18 hours, 7 minutes ago

Why an HP Poly VoIP Phones Bug Could Become an Enterprise Foothold

Rapid7 details a critical unauthenticated overflow in HP Poly VoIP phones that can lead to root RCE, with patches available for affected models. Rapid7’s latest disclosure on CVE-2026-0826 should get serious attention from anyone running HP Poly VoIP phones in an enterprise setting. It’s a critical unauthenticated stack-based buffer overflow that can give a remote […]

More from Security Affairs 3 Jun 2026, 5:03 p.m. CVE-2026-0826 CVE Critical Disclosure Patch Remote Code Execution Root Unauthenticated VoIP

Security Affairs 2 days, 13 hours ago

CIFSwitch, a Linux Root Bug Hidden in Plain Sight for 19 Years

CIFSwitch is a 19-year-old Linux logic bug turning forged CIFS auth keys into root. Affects Mint, CentOS, Rocky, Kali, SLES. CIFSwitch stands apart from typical privilege escalation vulnerabilities because of how it was discovered. Asim Manizada, a security engineer at SpaceX, didn’t find it by auditing source code the old-fashioned way. He built an AI-powered […]

More from Security Affairs 1 Jun 2026, 9:55 p.m. Incident · 2 stories Artificial Intelligence Linux Privilege Escalation Root Source Code Vulnerability

Bleeping Computer 4 days, 8 hours ago

New CIFSwitch Linux flaw gives root on multiple distributions

A newly discovered local privilege escalation vulnerability dubbed 'CIFSwitch' in the Linux kernel could allow attackers to forge CIFS authentication key descriptions, abuse the kernel's key request mechanism, and gain root privileges. [...]

More from Bleeping Computer 31 May 2026, 2:16 a.m. Incident · 2 stories Abuse Authentication Flaw Linux Privilege Escalation Root Vulnerability

The Hacker News 1 week, 4 days ago

LiteSpeed cPanel Plugin CVE-2026-48172 Exploited to Run Scripts as Root

A maximum-severity security vulnerability impacting LiteSpeed User-End cPanel Plugin has come under active exploitation in the wild

More from The Hacker News 23 May 2026, 7:35 p.m. Actively exploited CVE-2026-48172 Abuse CVE Compromise Flaw Root Vulnerability

Bank Info Security 1 week, 5 days ago

RondoDox Botnet Exploits 2018 Flaw in Asus Routers

Botnet Operators Execute First Known Exploit of Nearly Decade-Old FlawOperators behind a botnet picked up on a nearly decade-old flaw in Asus routers allowing an unauthenticated attacker to achieve remote code execution as a root user. VulnCheck began observing exploitation of the Asus vulnerability on May 17.

More from Bank Info Security 23 May 2026, 11:00 a.m. Incident · 5 stories Botnet Exploit Flaw Remote Code Execution Root Routers Unauthenticated Vulnerability

The Hacker News 1 week, 6 days ago

9-Year-Old Linux Kernel Flaw Enables Root Command Execution on Major Distros

Cybersecurity researchers have disclosed details of a vulnerability in the Linux kernel that remained undetected for nine years

More from The Hacker News 21 May 2026, 7:35 p.m. Incident · 2 stories CVE Disclosure Flaw Linux Research Root Vulnerability

Bleeping Computer 2 weeks ago

Exploit released for new PinTheft Arch Linux root escalation flaw

PinTheft, a recently patched Linux privilege escalation vulnerability, now has a publicly available proof-of-concept (PoC) exploit that allows local attackers to gain root privileges on Arch Linux systems. [...]

More from Bleeping Computer 20 May 2026, 10:52 p.m. Exploit Flaw Linux Patch PoC Privilege Escalation Root Vulnerability

The Register 2 weeks, 2 days ago

Linux kernel flaw opens root-only files to unprivileged users

Plus ModuleJail, a radical proposal for minimizing the impact of similar bugs

More from The Register 19 May 2026, 4:20 a.m. Flaw Linux Proposal Root

Bleeping Computer 2 weeks, 2 days ago

Exploit available for new DirtyDecrypt Linux root escalation flaw

A recently patched local privilege escalation vulnerability in the Linux kernel's rxgk module now has a proof-of-concept exploit that allows attackers to gain root access on some Linux systems. [...]

More from Bleeping Computer 18 May 2026, 7:18 p.m. Exploit Flaw Linux Patch PoC Privilege Escalation Root Vulnerability

Info Security Magazine 2 weeks, 6 days ago

New Fragnesia Flaw Hands Linux Local Users Root Access

New Fragnesia kernel flaw lets unprivileged local users escalate to root on Linux systems

More from Info Security Magazine 15 May 2026, 1:00 a.m. Incident · 9 stories Flaw Linux Root

The Register 2 weeks, 6 days ago

Dirty Frag gets a sequel as Fragnesia hands Linux attackers root-level access

Fresh kernel flaw comes with public exploit code and continues ugly run of highly reliable privilege escalation bugs tied to memory and page-cache handling

More from The Register 14 May 2026, 10:01 p.m. Incident · 9 stories Exploit Flaw Linux Privilege Escalation Root

Bleeping Computer 2 weeks, 6 days ago

New Fragnesia Linux flaw lets attackers gain root privileges

Linux distros are rolling out patches for a new high-severity kernel privilege escalation vulnerability (known as Fragnasia and tracked as CVE-2026-46300) that allows attackers to run malicious code as root. [...]

More from Bleeping Computer 14 May 2026, 7:34 p.m. Incident · 9 stories CVE-2026-46300 CVE Flaw Linux Malicious Code Patch Privilege Escalation Root Vulnerability

The Hacker News 2 weeks, 6 days ago

New Fragnesia Linux Kernel LPE Grants Root Access via Page Cache Corruption

Details have emerged about a new variant of the recent Dirty Frag Linux local privilege escalation (LPE) vulnerability that allows local attackers to gain root access, making it the third such bug to be identified in the kernel within a span of two weeks

More from The Hacker News 14 May 2026, 7:06 p.m. Incident · 9 stories CVE Linux Privilege Escalation Root Vulnerability

The Register 2 weeks, 6 days ago

To gain root access at this company, all an intruder had to do was ask nicely

Human IT managers thought they were being nice to the boss, but were assisting a threat actor

More from The Register 14 May 2026, 7:00 p.m. Theme · 2 stories Root Threat Actor

The Register 2 weeks, 6 days ago

To gain root access at this company, all an intruder had to do was ask nicely

Human IT managers thought they were being nice to the boss, but were assisting a threat actor

More from The Register 14 May 2026, 7:00 p.m. Theme · 2 stories Root Threat Actor

The Hacker News 3 weeks, 2 days ago

⚡ Weekly Recap: Linux Rootkit, macOS Crypto Stealer, WebSocket Skimmers and More

Rough Monday

More from The Hacker News 12 May 2026, 12:36 a.m. Incident · 17 stories Cloud Cryptocurrency Linux Report Root Rootkit macOS

Bank Info Security 3 weeks, 5 days ago

'Dirty Frag' Gives Root on Linux Distros

No Patches Yet Available, After Third Party Published Vulnerability DetailsSecurity researchers have discovered a new, critical flaw in the Linux kernel that attackers can exploit to gain root access. No patches are yet available to fix "Dirty Frag," the second new local privilege escalation flaw to be found in two weeks, following the similar "Copy Fail" vulnerability.

More from Bank Info Security 9 May 2026, 6:30 a.m. Incident · 9 stories Critical Exploit Flaw Linux Patch Privilege Escalation Research Root Vulnerability

Microsoft Security Research 3 weeks, 5 days ago

Active attack: Dirty Frag Linux vulnerability expands post-compromise risk

Dirty Frag is a newly disclosed Linux local privilege escalation vulnerability affecting kernel networking and memory-fragment handling components including esp4, esp6, and rxrpc. The vulnerability enables reliable escalation from an unprivileged user to root and may be leveraged after initial compromise through SSH access, web shells, containers, or low-privileged accounts. Microsoft Defender is actively monitoring limited in-the-wild activity and provides detection coverage for exploitation attempts. The post Active attack: Dirty Frag Linux vulnerability expands post-compromise risk appeared first on Microsoft Security Blog.

More from Microsoft Security Research 9 May 2026, 5:12 a.m. Antivirus Compromise Containers Disclosure Linux Microsoft Privilege Escalation Root SSH Vulnerability

The Register 3 weeks, 5 days ago

'Dirty Frag' Linux flaw one-ups CopyFail with no patches and public root exploit

Broken disclosure embargo left admins facing a fresh root-level flaw with no CVE

More from The Register 9 May 2026, 1:36 a.m. Incident · 9 stories CVE Disclosure Exploit Flaw Linux Patch Root

Bleeping Computer 3 weeks, 5 days ago

New Linux 'Dirty Frag' zero-day gives root on all major distros

A new Linux zero-day exploit, named Dirty Frag, allows local attackers to gain root privileges on most major Linux distributions with a single command. [...]

More from Bleeping Computer 8 May 2026, 7:45 p.m. Incident · 9 stories 0-Day Exploit Linux Root Vulnerability

Loading more headlines...

Latest coverage for Root

Refine the feed

Tag briefing

Volume over time

Fresh headlines available

Why an HP Poly VoIP Phones Bug Could Become an Enterprise Foothold

CIFSwitch, a Linux Root Bug Hidden in Plain Sight for 19 Years

New CIFSwitch Linux flaw gives root on multiple distributions

LiteSpeed cPanel Plugin CVE-2026-48172 Exploited to Run Scripts as Root

RondoDox Botnet Exploits 2018 Flaw in Asus Routers

9-Year-Old Linux Kernel Flaw Enables Root Command Execution on Major Distros

Exploit released for new PinTheft Arch Linux root escalation flaw

Linux kernel flaw opens root-only files to unprivileged users

Exploit available for new DirtyDecrypt Linux root escalation flaw

New Fragnesia Flaw Hands Linux Local Users Root Access

Dirty Frag gets a sequel as Fragnesia hands Linux attackers root-level access

New Fragnesia Linux flaw lets attackers gain root privileges

New Fragnesia Linux Kernel LPE Grants Root Access via Page Cache Corruption

To gain root access at this company, all an intruder had to do was ask nicely

To gain root access at this company, all an intruder had to do was ask nicely

⚡ Weekly Recap: Linux Rootkit, macOS Crypto Stealer, WebSocket Skimmers and More

'Dirty Frag' Gives Root on Linux Distros

Active attack: Dirty Frag Linux vulnerability expands post-compromise risk

'Dirty Frag' Linux flaw one-ups CopyFail with no patches and public root exploit

New Linux 'Dirty Frag' zero-day gives root on all major distros