Shai-Hulud malware worms Red Hat npm package versions downloaded 80K times a week
TeamPCP? Or copycat malware dev?
Red Hat develops enterprise Linux and related software, making its security advisories, patches, and vulnerabilities relevant to systems that rely on them.
Search across headline titles and summaries.
Background for this topic.
Red Hat is the publisher and maintainer of enterprise open-source platforms, chiefly Red Hat Enterprise Linux (RHEL), Red Hat OpenShift for containerized applications, and Red Hat Satellite for system management. RHEL commonly provides SELinux, a mandatory access-control system that restricts processes according to policy, while Red Hat’s signed packages, security errata, and defined support lifecycles help organizations maintain controlled software baselines.
Security teams track Red Hat security advisories and apply the relevant updates across RHEL hosts, virtual machines, and images; delayed patching can leave known flaws exploitable, while version and support status affect remediation options. Satellite can centralize repository and patch governance, but it must itself be secured. OpenShift adds Kubernetes-specific exposure: overly broad role permissions, exposed management interfaces, insecure container images, and misconfigured secrets can expand an application’s attack surface. SELinux and platform defaults reduce risk only when policies, access controls, image sources, and audit data are reviewed and maintained.
Weekly headline count for the current query.
TeamPCP? Or copycat malware dev?
Top brass splash cash on acoustic targeting, hypersonic missiles…and Red Hat Keir Starmer could ramp up the UK's defense spending plans faster than planned as the MoD reeled off new purchases for Britain's armed forces.…
Automaker's third security snafu in three years Thousands of Nissan customers are learning that some of their personal data was leaked after unauthorized access to a Red Hat-managed server, according to the Japanese automaker.…
Open source giant admits intruders broke into dedicated consulting instance, but insists core products untouched What started as cyber crew bragging has now been confirmed by Red Hat: someone gained access to its consulting GitLab system and walked away with data.…
570GB of data claimed to be stolen by the Crimson Collective A hacking crew claims to have broken into Red Hat's private GitHub repositories, exfiltrating some 570GB of compressed data, including sensitive documents belonging to customers. …
Who wouldn't want root access on cluster master nodes? A 9.9 out of 10 severity bug in Red Hat's OpenShift AI service could allow a remote attacker with minimal authentication to steal data, disrupt services, and fully hijack the platform.…
Red Hat in all caps says STOP USAGE OF ANY FEDORA RAWHIDE INSTANCES Red Hat on Friday warned that a malicious backdoor found in the widely used data compression library called xz may be present in Fedora Linux 40, 41, and in the Fedora Rawhide developer distribution.…
How Red Hat turns an open source entity into overt enterprise security Webinar Linux has come a long way from the early days of 1991 when the Linux kernel grew out of a student project.…
Keeping on top of Linux enterprise security requirements Webinar If there was a tablet of stone inscribed with ten commandments for the fundamental requirements of an operating environment, the first would almost certainly be 'thou shalt have security and stability.'…
Keeping the contents of your clusters secure from whoever's hosting them Red Hat is backing a Cloud Native Computing Foundation (CNCF) project that aims to improve the security of containers in Kubernetes clusters by running them inside hardware-enforced enclaves.…
Red Hat’s approach to locking down remote industrial networks and data processing facilities Sponsored Feature If you've ever wondered what edge computing looks like in action, you could do worse than study the orbiting multi-dimensional challenge that is the multi-agency International Space Station (ISS).…