The Linux kernel faces a new DirtyFrag vulnerability following the recent CopyFail exploit, while major security breaches impact Infrastructure, CPanel, and the DaemonTools software update distribution channel.

Key Points

• DirtyFrag chains a new RPC vulnerability with the CopyFail exploit to manipulate the Linux page cache and gain root access.
• CISA added CopyFail to its Known Exploited Vulnerabilities (KEV) list as active exploitation continues across various distributions.
• The educational software company Infrastructure suffered a breach by ShinyHunters, potentially exposing data for 275 million students and 9,000 schools.
• Microsoft Edge stores its entire decrypted password database in RAM, creating a significant security risk for users vulnerable to memory-dumping malware.
• DaemonTools was compromised via official update channels to deliver targeted malware to government, science, and manufacturing systems.
• Oracle is shifting from quarterly to monthly security updates to address the accelerating pace of vulnerability discovery and exploitation.

Why it Matters

These incidents highlight a critical trend where attackers are increasingly targeting supply chains and core infrastructure to achieve widespread system compromise. Organizations must prioritize rapid patching and robust monitoring, as even standard utility software and default browser configurations are now being leveraged as primary vectors for persistent unauthorized access.