U.S. government warns of severe CopyFail bug affecting major versions of Linux
ATT&CK techniques detected
T1068Exploitation for Privilege Escalation
92%
“security firm theori, which discovered copyfail, the vulnerability was verified in several widely used versions of linux including red hat enterprise linux 10. 1, ubuntu 24. 04 ( lts ), amazon linux 2023, as well as suse 16. devops engineer and developer jorijn schrijvershof wrot…”
Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.
No matches for .
Loading techniques…
T1068Exploitation for Privilege Escalation
89%
“gain full - administrator access on an affected linux system. a successful compromise of a server in a datacenter could allow an attacker to gain access to every application, server, and database of numerous corporate customers, and potentially gain access to other systems on the…”
Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.
No matches for .
Loading techniques…
T1190Exploit Public-Facing Application
65%
“gain full - administrator access on an affected linux system. a successful compromise of a server in a datacenter could allow an attacker to gain access to every application, server, and database of numerous corporate customers, and potentially gain access to other systems on the…”
Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.
No matches for .
Loading techniques…
Summary
U.S. cybersecurity agency CISA says the CopyFail bug is being actively used in hacking campaigns, and poses a major risk to servers and datacenters that rely on Linux.