Hacker News3d ago

First public macOS kernel memory corruption exploit on Apple M5

https://blog.calif.io/p/first-public-kernel-memory-corruption

#HackerNews #macOS #exploit #AppleM5 #kernelsecurity #memorycorruption #HackerNews

First public macOS kernel memory corruption exploit on Apple M5

Apple spent five years building hardware and software to make memory corruption exploits dramatically harder. Our engineers, working together with Mythos Preview, built a working exploit in five days.

Calif
Dorian DiaconuMay 9

Copy Fail (CVE-2026-31431) is a 4-byte write into the Linux page cache that hands root to any local user in seconds. No race, no ASLR bypass, a 2017 "in-place is faster" optimization in algif_aead, exploitable in 2026 with 732 bytes of Python.
The boundaries that hold are the ones that don't share a kernel: Firecracker, V8 isolates, gVisor. Shared-kernel containers, you have homework.
#LinuxSecurity #KernelSecurity #DevOps

https://open.substack.com/pub/doriandiaconu/p/copy-fail

Copy Fail

A Four-Byte Write That Eats Your Page Cache

doriandiaconuro
N-gated Hacker NewsApr 2
LWN.net is *thrilled* to announce that #AI is now flooding the kernel security list with *riveting* #reports at an unprecedented rate. 🎉 Who needs #quality when you can have *quantity*, right? 👏 Apparently, robots are the new unpaid interns, churning out security tattle faster than humans can hit "unsubscribe." 🤖📈
https://lwn.net/Articles/1065620/ #LWNnet #KernelSecurity #Quantity #Over #UnpaidInterns #HackerNews #ngated
Significant raise of reports [LWN.net]

Show threadcrowFeb 2
Got tricked into writing a blog post better explaining the linux kernel's audit system and setting it up in Nix

It's a moving work of art and you should read it; it will look great on your wedding day: https://blog.xvrqt.com/nix-audit.html

#nix #nixos #linux #kernelsecurity
nix audit

Nix Audit The linux kernel has an audit module which can keep track of which files are accessed, an...

xvrqt
TechNaduDec 31

Threat intelligence analysts are tracking VOID KILLER, an underground tool marketed as a kernel-level AV and EDR process terminator.

If effective, this approach represents a shift from payload obfuscation toward direct disruption of defensive controls, challenging behavioral and real-time monitoring models.

This reinforces the importance of layered defenses, telemetry integrity, and kernel-level trust validation.

Follow TechNadu for objective threat analysis and security research coverage.

Source: https://cybersecuritynews.com/hackers-advertised-void-av-killer/amp/

#InfoSec #ThreatResearch #EndpointSecurity #KernelSecurity #EDR #CyberRisk

Diego Córdoba 🇦🇷Dec 4

Avances en el curso de #Linux #Hardening! 🚀

Hoy parametrizamos el núcleo para maximizar su seguridad 🤓

Grabé algunas opciones para mitigar ataques de DoS, ICMP/Ping Flooding, y Smurf.

Y para probar los parámetros, nada mejor que armar un lab, realizar los ataques, y ver cómo responde el sistema 🖥️

Se va poniendo interesante!
Alguien interesado/a por acá? 🤗

Los tengo informados!

#KernelSecurity #DoSMitigation #ICMPFlood #SmurfAttack #NetworkSecurity #CyberSecurity #SysAdmin #DevSecOps

Show threadAnnual Computer Security Applications ConferenceNov 13, 2025
The last paper presented was Yen et al.'s "SECvma: Virtualization-based Linux Kernel Protection for Arm," which introduces a new system for protecting the #Linux kernel's code integrity and confidentiality using virtualization. (https://www.acsac.org/2024/program/final/s240.html) 6/6
#KernelSecurity
Show threadAnnual Computer Security Applications ConferenceNov 13, 2025
Third in the session was Li et al.'s "Rust for Linux: Understanding Security Impact of Rust on the Linux Kernel," highlighting Rust's ability to eliminate many safety-related vulnerabilities in device drivers. (https://www.acsac.org/2024/program/final/s480.html) 4/6
#RustLang #KernelSecurity
Reddit Tech VN BotOct 8, 2025

EzAntiAntiCheat - dự án mã nguồn mở mới, tập trung nghiên cứu và thử nghiệm các hệ thống chống gian lận cấp kernel. Mục tiêu là quản lý xung đột giữa các phần mềm anti-cheat mạnh mẽ (như Riot Vanguard). Đây KHÔNG phải công cụ để lách anti-cheat khi chơi game, mà dành cho mục đích giáo dục và nghiên cứu bảo mật. Kêu gọi các nhà phát triển driver kernel và chuyên gia bảo mật hợp tác!

#EzAntiAntiCheat #OpenSource #AntiCheat #KernelSecurity #SecurityResearch #MãNguồnMở #BảoMật #NghiênCứu

https://w

N-gated Hacker NewsSep 19, 2025
🥴 Ah, yes, Rust in the kernel, because what we really need is to sprinkle more coding languages into the tech soup 🍲. Clearly, the way to "track trust" is by adding layers of #complexity no one asked for. Kernel security? Just slap some Rust on it, problem solved! 🙄
https://lwn.net/Articles/1034603/ #RustInKernel #TechSoup #CodingLanguages #KernelSecurity #HackerNews #ngated
Tracking trust with Rust in the kernel

The Linux kernel has to handle many different sources of data that should not be trusted: user [...]

LWN.net