Red Hat breached as hackers target Linux servers
By Asavin Wattanajantra,
Open source software and Linux was shown to be susceptible to hacking after Red Hat issued a critical update following a breach of its servers.
Red Hat Enterprise Linux and Fedora servers were compromised by network attacks, which forced the company to take them offline.
The compromised Fedora server was a system used for signing Fedora packages. Red Hat was confident that the intruder did not compromise the Fedora signing key, but as a precaution it has decided to convert to new ones.
The incidents are currently under investigation, but the hackers do not appear to have corrupted future packages being sent to Red Hat subscribers with malware.
Red Hat also said the intruder was able to sign a small number of Red Hat Enterprise Linux 4 and Red Hat Enterprise 5 OpenSSH packages. As a precaution it released updated versions of these packages, as well as publishing a list of the tampered packages and how to detect them.
Red Hat said of its critical update: “We remain highly confident that our systems and processes prevented the intrusion from compromising Red Hat Network.
“We are issuing this alert primarily for those who may obtain Red hat binary packages via channels other than that of official Red Hat subscribers.”
You may also like...
Sponsored Links
advertisement
You may also like...
Latest Security Analysis & Insight
What is your password worth?
Would you be tempted to sell off company passwords for a fee? If not, seems like you're in the minority, acccording to research.
- Macs under attack?
- Intel: security inside
- Are you spending too much on IT security?
- Does the government want to snoop on your data?
- Eurocrats versus the cyber criminals
- The truth about spam
- Google and privacy: What’s the problem?
- Q&A: Symantec’s CISO on the source code hack
- RSA: Back from the breach?
Latest Security Reviews
Check Point 2210 Appliance review
Rating: 
advertisement
Most popular
- Apple iPad 3 vs iPad 2 head-to-head review
- ICO: Fines for cookie law breakers
- Hutchison denies it will pull plug on Three UK
- Sony Vaio T13 Ultrabook review: First look
- BlackBerry 7 OS certified to carry 'Restricted' UK government information
- Facebook floatation marred by Nasdaq glitch
- Open source software driving cloud-based innovation
- CIO: Career is over?
- EMC World 2012: Tucci declares Documentum is here to stay
- Dell PowerEdge R820 review
Latest News Videos in Security
IT PRO Podcast: Are UK data protection laws flawed?
PlayWe bring in two experts to talk about the problems with UK data protection law and the way it is managed.
Register for IT PRO
You'll get exclusive member benefits including free whitepapers, downloads, Webinars and weekly newsletters full of the latest IT PRO news, reviews, insight and expertise.
