📰 Malicious PyPI Package Impersonates SymPy, Deploys XMRig Miner on Linux Hosts

A new malicious package discovered in the Python Package Index (PyPI) has been found to impersonate a popular library for symbolic mathematics to deploy malicious payloads, including a cryptocurrency miner, on Linux hosts.The package, named sympy-dev, mimics SymPy, replicating the latter's project denoscription verbatim in an attempt to deceive unsuspecting users into thinking that they are.

🔗 Source: https://thehackernews.com/2026/01/malicious-pypi-package-impersonates.html

👉@sysadminoff

Firefox’s Tab Notes Feature Feels Genuinely Useful (For Me, At Least)

Something has changed in my browsing habits of late, and I’m not sure I like it. I used to be a “if I don’t need it, close it” guy. Now? 25 tabs open – a mix of news articles, code repos, drafts and random stuff I swore I’d revisit… only I don’t remember why. But it seems Firefox has a fix for my forgetfulness in the works: Tab Notes. As the name suggests, Tab Notes are small text notes you can attach to any tab. This should act as an alibi for my intent, surfacing much needed answers for the all-too-frequent […]
You're reading Firefox’s Tab Notes Feature Feels Genuinely Useful (For Me, At Least), a blog post from OMG! Ubuntu. Do not reproduce elsewhere without permission.

👉@sysadminoff

https://www.omgubuntu.co.uk/2026/01/firefox-new-tab-notes-feature

How to Use GPG to Encrypt and Decrypt Files in Linux

The post How to Use GPG to Encrypt and Decrypt Files in Linux first appeared on Tecmint: Linux Howtos, Tutorials & Guides .In this article, we show you how to encrypt files with GPG in Linux, generate key pairs, share encrypted files
The post How to Use GPG to Encrypt and Decrypt Files in Linux first appeared on Tecmint: Linux Howtos, Tutorials & Guides.

👉@sysadminoff

https://www.tecmint.com/gpg-encrypt-decrypt-files/

How to Set Time, Timezone and Sync Server Clock in Linux

The post How to Set Time, Timezone and Sync Server Clock in Linux first appeared on Tecmint: Linux Howtos, Tutorials & Guides .In this article, learn how to set time, timezone, and synchronize your Linux system clock with NTP using timedatectl, systemd-timesyncd,
The post How to Set Time, Timezone and Sync Server Clock in Linux first appeared on Tecmint: Linux Howtos, Tutorials & Guides.

👉@sysadminoff

https://www.tecmint.com/set-time-timezone-synchronize-linux/

На соревновании Pwn2Own Automotive 2026 продемонстрировано 66 уязвимостей автомобильных систем

Подведены итоги трёх дней соревнований Pwn2Own Automotive 2026, проведённых на конференции Automotive World в Токио. На соревнованиях были продемонстрированы 66 ранее неизвестных уязвимостей (0-day) в автомобильных информационно-развлекательных платформах, операционных системах и устройствах зарядки электромобилей. При проведении атак использовались самые свежие прошивки и операционные системы со всеми доступными обновлениями и в конфигурации по умолчанию.

👉@sysadminoff

https://www.opennet.ru/opennews/art.shtml?num=64662

📰 New Steam Client Update Adds Support for the Razer Raiju V3 Pro Controller

Valve released a new Steam Client stable update with support for the Razer Raiju V3 Pro PS5/PC wireless controller and other changes.

🔗 Source:

👉@sysadminoff

https://9to5linux.com/new-steam-client-update-adds-support-for-the-razer-raiju-v3-pro-controller

📰 FreeBSD is a No-Go for KDE's Plasma Login Manager

FreeBSD is a Unix-like operating system that has roots in Berkeley Software Distribution (BSD), which itself originated from research conducted at the University of California, Berkeley, in the 1970s.

🔗 Source:

👉@sysadminoff

https://itsfoss.com/news/plasma-login-manager-drops-freebsd/

📰 Servo 0.0.4 Browser Engine Released & Finally Supporting Multiple Windows

Servo 0.0.4 is out today as the newest monthly update to this open-source, Rust-based web browser engine. Building off recent Servo embedding API additions, Servo 0.0.4 introduces support for multiple browser windows...

🔗 Source:

👉@sysadminoff

https://www.phoronix.com/news/Servo-0.0.4

📰 Critical GNU InetUtils telnetd Flaw Lets Attackers Bypass Login and Gain Root Access

A critical security flaw has been disclosed in the GNU InetUtils telnet daemon (telnetd) that went unnoticed for nearly 11 years.The vulnerability, tracked as CVE-2026-24061, is rated 9.8 out of 10.0 on the CVSS scoring system. It affects all versions of GNU InetUtils from version 1.9.3 up to and including version 2.7."Telnetd in GNU Inetutils through 2.7 allows remote authentication bypass.

🔗 Source: https://thehackernews.com/2026/01/critical-gnu-inetutils-telnetd-flaw.html

👉@sysadminoff

📰 Linux Lands Fix For Its "Subtly Wrong" Page Fault Handling Code For The Past 5 Years

Merged today for the Linux 6.19 Git kernel and then in turn for back-porting to prior Linux kernel series is making the x86 page fault handling code disable interrupts properly. Since 2020 it turns out the handling was subtly wrong but now corrected by Intel...

🔗 Source: https://www.phoronix.com/news/Linux-6.19-Page-Fault-Code-Fix

#intel #kernel #linux

👉@sysadminoff

https://ift.tt/xV4oRaF

📰 GNU Guix 1.5 Released With RISC-V Support, Experimental x86_64 GNU Hurd Kernel

GNU Guix 1.5 is out today as the latest major release for this platform built around its functional package manager. This is a big upgrade with it having been three years since the GNU Guix 1.4 release...

🔗 Source:

#gnu #kernel

👉@sysadminoff

https://www.phoronix.com/news/GNU-Guix-1.5-Released

Security Baseline for Microsoft 365 Apps for enterprise v2512: Intune and Group Policy deployment

Microsoft just announced the Security Baseline for Microsoft 365 Apps for enterprise version 2512 ( (v2512, December 2025) as part of the Microsoft Security Compliance Toolkit. This security configuration package aligns with Administrative Templates released in version 5516 and introduces updated policies designed to strengthen protections in Excel, PowerPoint, and core Microsoft 365 Apps components. You can deploy these Microsoft-recommended security configurations through multiple methods including Office cloud policies, Microsoft Intune, or Group Policy to reduce configuration drift and ensure consistent protection across enterprise environments.
Source

👉@sysadminoff

https://4sysops.com/archives/security-baseline-for-microsoft-365-apps-for-enterprise-v2512-intune-and-group-policy-deployment/

📰 Nexus Mods say they are committed to supporting Vortex on SteamOS Linux

After cancelling the newer Nexus Mods app that had Linux support to refocus on the older Vortex, the Nexus Mods team now say Vortex will support SteamOS.Read the full article on GamingOnLinux.

🔗 Source:
#linux

👉@sysadminoff

https://www.gamingonlinux.com/2026/01/nexus-mods-say-they-are-committed-to-supporting-vortex-on-steamos-linux/

📰 Vulkan 1.4.340 released with new extension to improve DirectX performance on Linux

We're seeing excitement build up from the Vulkan API release 1.4.340, with a new extension that should eventually improve DirectX performance on Linux.Read the full article on GamingOnLinux.

🔗 Source:

#linux

👉@sysadminoff

https://www.gamingonlinux.com/2026/01/vulkan-1-4-340-released-with-new-extension-to-improve-directx-performance-on-linux/

📰 GPD claim the WIN 5 is getting an official Bazzite Linux adaptation but the Bazzite team say otherwise

GPD are being weird again - making a claim that the GPD WIN 5 is getting an "official" adaptation with Bazzite Linux but the Bazzite team say otherwise.Read the full article on GamingOnLinux.

🔗 Source:

#linux

👉@sysadminoff

https://www.gamingonlinux.com/2026/01/gpd-claim-the-win-5-is-getting-an-official-bazzite-linux-adaptation-but-the-bazzite-team-say-otherwise/

📰 VVenC H.266 Encoder Rolls Out More ARM Optimizations For Nice Performance Gains

Fraunhofer HHI this week released a new version of VVenC, their open-source H.266 video encoder. Among the changes this release are more performance optimizations for ARM and I have run some comparison benchmarks using a NVIDIA GB10 SoC with the Dell Pro Max GB10...

🔗 Source:

#arm #opensource

👉@sysadminoff

https://www.phoronix.com/news/VVenC-1.14-More-ARM-Performance

📰 Hackers exploit critical telnetd auth bypass flaw to get root

A coordinated campaign has been observed targeting a recently disclosed critical-severity vulnerability that has been present in the GNU InetUtils telnetd server for 11 years.

🔗 Source: https://www.bleepingcomputer.com/news/security/hackers-exploit-critical-telnetd-auth-bypass-flaw-to-get-root/

#gnu

👉@sysadminoff

https://ift.tt/g0rB3te

Tonearm, New Unofficial TIDAL Client for Linux, Hits Beta

Tonearm is a new GTK4/libadwaita TIDAL client that delivers what the streaming service itself doesn’t: a native Linux app with solid desktop integration – albeit unofficially, of course. It’s the third unofficial client for Linux I’ve covered, joining High Tide and the Electron-based Tidal-Hifi. All exist as TIDAL doesn’t provide a Linux app itself, leaving users with the option of the web player. The web app works fine, but it means keeping a browser tab open and losing out on system-side niceties like media controls and keyboard shortcuts. Thankfully, TIDAL offer a robust API that, with a bit of open-source […]
You're reading Tonearm, New Unofficial TIDAL Client for Linux, Hits Beta, a blog post from OMG! Ubuntu. Do not reproduce elsewhere without permission.

👉@sysadminoff

https://www.omgubuntu.co.uk/2026/01/tonearm-tidal-client-for-linux-beta

📰 Not An April Fool's Joke, You Can Run Linux and Windows on This Android Smartphone

This $549 rugged smartphone runs Android 16, launches Debian Linux as an app, and dual-boots Windows 11.

🔗 Source:

#debian #android #linux

👉@sysadminoff

https://itsfoss.com/news/nexphone-returns/

GNU Guix 1.5 Released with KDE Plasma 6.5, GNU Linux-Libre 6.17 Kernel

GNU Guix 1.5 transactional package manager and an advanced distribution of the GNU system are out now with new features and improvements. Here's what's new!
The post GNU Guix 1.5 Released with KDE Plasma 6.5, GNU Linux-Libre 6.17 Kernel appeared first on 9to5Linux - do not reproduce this article without permission. This RSS feed is intended for readers, not scrapers.

👉@sysadminoff

https://9to5linux.com/gnu-guix-1-5-released-with-kde-plasma-6-5-gnu-linux-libre-6-17-kernel

Проект Singularity развивает открытый руткит, обходящий SELinux, Netfilter, LKRG и eBPF

Матеус Алвес (Matheus Alves), исследователь безопасности, специализирующийся на вредоносном ПО, опубликовал обновление проекта Singularity, развивающего открытый руткит для ядра Linux, распространяемый под лицензией MIT. Целью проекта является демонстрация методов, позволяющих скрыть своё присутствие после получения root-доступа и сохранить возможность скрытого выполнения привилегированных операций. Предполагается, что Singularity может быть полезен исследователям безопасности для тестирования и разработки утилит обнаружения и блокирования руткитов.

👉@sysadminoff

https://www.opennet.ru/opennews/art.shtml?num=64663