IIRC, that was more about auditing the “supply chain” of apps and Linux. Some college kids were purposefully trying to get malware on the mainline Linux repo and obviously got themselves banned from touching Linux.
Otherwise it’s just been normal security vulnerability type stuff? There was also a long-existing bug found in a very common library recently, but that’s very solidly in the normal flow of security research, the bug just happened to be sitting there a while.
Linux of course is a target and has malware. It’d be completely stupid of attackers to ignore Linux because the vast majority of servers run it. It’s a readily available target with lots of goodies on those servers.
I don’t think it was just some college kids, I could have sworn their professor was specifically getting his students to perform as bad actors to support some super-biased research papers he was trying to publish.
IIRC, that was more about auditing the “supply chain” of apps and Linux. Some college kids were purposefully trying to get malware on the mainline Linux repo and obviously got themselves banned from touching Linux.
Otherwise it’s just been normal security vulnerability type stuff? There was also a long-existing bug found in a very common library recently, but that’s very solidly in the normal flow of security research, the bug just happened to be sitting there a while.
Linux of course is a target and has malware. It’d be completely stupid of attackers to ignore Linux because the vast majority of servers run it. It’s a readily available target with lots of goodies on those servers.
I don’t think it was just some college kids, I could have sworn their professor was specifically getting his students to perform as bad actors to support some super-biased research papers he was trying to publish.