Linux Distributions Vulnerable to Cyber-Attacks: Report

Advertisement
By Indo-Asian News Service | Updated: 10 August 2016 18:21 IST
Linux Distributions Vulnerable to Cyber-Attacks: Report
Researchers from University of California-Riverside have identified a weakness in the Transmission Control Protocol (TCP) of all Linux operating systems that enables attackers to remotely hijack users' internet communications.

Such a weakness could be used to launch targeted attacks that track users' online activity, forcibly terminate a communication, hijack a conversation between hosts or degrade the privacy guarantee by anonymity networks such as Tor.

To transfer information from one source to another, Linux and other operating systems use the Transmission Control Protocol (TCP) to package and send data, and the Internet Protocol (IP) to ensure the information gets to the correct destination.

When two people communicate by email, TCP assembles their message into a series of data packets, identified by unique sequence numbers, that are transmitted, received, and reassembled into the original message.

Those TCP sequence numbers are useful to attackers, but with almost four billion possible sequences, it is essentially impossible to identify the sequence number associated with any particular communication by chance.

Advertisement

The researchers led by Yue Cao, computer science graduate student, identified a subtle flaw in the Linux software that enables attackers to infer the TCP sequence numbers associated with a particular connection with no more information than the IP address of the communicating parties.

This means that given any two arbitrary machines on the internet, a remote blind attacker without being able to eavesdrop on the communication, can track users' online activity, terminate connections with others and inject false material into their communications.

Advertisement

The weakness can allow attackers to degrade the privacy of anonymity networks, such as Tor, by forcing the connections to route through certain relays, the authors stated.

The attack is fast and reliable, happens in less than a minute and has a success rate of about 90 percent.

Advertisement

The researchers alerted Linux about the vulnerability which resulted in patches applied to the latest Linux version.

The study was set to be presented at the USENIX Security Symposium in Austin, Texas, this week.

 
Post your comments

For the latest tech news and reviews, follow Gadgets 360 on X, Facebook, WhatsApp, Threads and Google News. For the latest videos on gadgets and tech, subscribe to our YouTube channel. If you want to know everything about top influencers, follow our in-house Who'sThat360 on Instagram and YouTube.

Further reading: Hijacking, Internet, Laptops, Linux, PC, Tor, Ubuntu
Inbox by Gmail Update Brings Improved Email Notifications and More
Apple Said to Plan First Significant MacBook Pro Overhaul in 4 Years
Advertisement

Related Stories

Indian News Agency ANI Sues Netflix for Using its Content in 'IC-814: The Kandahar Hijack' Series
9 September 2024
Netflix to Add Disclaimers to IC-814: The Kandahar Hijack After Outrage Over Hijackers' Names
4 September 2024
IC 814: The Kandahar Hijack Review: A Thoroughly Researched Series That Points the Finger at the System
31 August 2024
OTT Releases This Week: IC 814: The Kandahar Hijack, The Lord of the Rings: The Rings of Power Season 2, and More
29 August 2024
India In Top 5 Domain Name Hijacks: Report
21 March 2016
Popular on Gadgets
Latest Gadgets
Popular Mobile Brands
#Trending Stories
  1. Is Mars Really Red? A Physicist Explains the Science Behind Its Colour and More
  2. China's Dragon Man Skull Found to Belong to Denisovan Lineage
#Latest Stories
  1. China’s Dragon Man Skull Found to Belong to Denisovan Lineage
  2. Is Mars Really Red? A Physicist Explains the Science Behind Its Colour and More
  3. Scientists Spotted the Largest Comet Lying in the Solar System’s Outskirts with Outbursting Gases
  4. SpaceX Starship Rocket Explodes During Ground Test at Texas Launch Pad
  5. NASA Postpones Axiom Mission 4 Launch to Ensure Space Station Readiness After Repairs
  6. Doom: The Dark Ages Review: Rip and Tear, Medieval Style
  7. Save Nalla Pasanga Now Streaming on Aha Tamil: Everything You Need to Know About Romantic Web Series
  8. Yugi Tamil Movie Now Streaming on Aha: A Gritty Tale of Crime, Surrogacy, and Revenge
  9. Lovely Now Available on Amazon Prime Video: What You Need to Know About Malayalam Fantasy Drama
  10. The Hunt- The Rajiv Gandhi Assassination Case OTT Release Date Revealed
Gadgets 360 is available in
Follow Us
Download Our Apps
Available in Hindi
© Copyright Red Pixels Ventures Limited 2025. All rights reserved.