The Ubuntu Security Podcast is a weekly podcast covering all the latest news and developments from the Ubuntu Security team. Each week the team discuss the various security updates that have been published across the Ubuntu releases, describing the technical details of both the security vulnerabilities as well as the fixes involved. Due to the […]
The post Introducing the Ubuntu security podcast appeared first on Ubuntu Blog.
Microarchitectural Data Sampling (MDS) describes a group of vulnerabilities (CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, and CVE-2019-11091) in various Intel microprocessors, which allow a malicious process to read various information from another process which is executing on the same CPU core. This occurs due to the use of various microarchitectural elements (buffers) within the CPU core. If one […]
The post Ubuntu updates to mitigate new Microarchitectural Data Sampling (MDS) vulnerabilities appeared first on Ubuntu Blog.
Extended Security Maintenance (ESM) is now available for Ubuntu 14.04 LTS to provide ongoing security patches for high and critical CVEs for UA Infrastructure customers.
The post Ubuntu 14.04 LTS has transitioned to ESM support appeared first on Ubuntu Blog.
Cyber attacks are becoming more sophisticated, attack frequency is on the rise, and the cost of cybercrime damage is projected to reach $6 trillion annually by 2021. Traditional defensive measures such as firewalls and intrusion detection systems that operate at the network perimeter are no longer enough to protect today’s distributed enterprise networks. Rather, a ‘defence […]
The post An introduction to AppArmor appeared first on Ubuntu Blog.
As 14.04 reaches the end of its five-year, Basic Security Maintenance, LTS window in April 2019, support for the OS is transitioning into a new phase - Extended Security Maintenance (ESM).
The post How to ensure the ongoing security and compliance of Ubuntu 14.04 LTS ‘Trusty Tahr’ appeared first on Ubuntu Blog.
Canonical has received Common Criteria EAL2 certification. The evaluation covers a fresh install of Ubuntu 16.04.4 LTS on one of the supported platforms listed in the certification report. Common Criteria (CC) for Information Technology Security Evaluation is an international standard (ISO/IEC IS 15408) for Computer security certification. It provides an assurance that a product satisfies a […]
The post Ubuntu is EAL2 certified appeared first on Ubuntu Blog.
Security remains the number one concern when designing and deploying IoT devices. High profile breaches continue to occur and concerns cease to subside. For any organisation, security needs to be front of mind and considered from the start – not as an afterthought. Having no mechanism in which to address security concerns can be as […]
The post Securing IoT device data against physical access appeared first on Ubuntu Blog.