Agreguesi i feed

The Extended Berkeley Packet Filter (eBPF) was created to make Linux more observable and secure. It extends kernel functionality without requiring new modules or recompilation, enabling precise monitoring, tracing, and policy enforcement at runtime. For defenders, it promised transparency. For attackers, it opened a new space to hide.

Red Hat confirmed a privilege escalation flaw in open-vm-tools (CVE-2025-41244), the utility that keeps Linux guests talking to VMware hosts. It handles the small things '' time sync, clipboard sharing, system events '' the background work that makes virtual machines feel seamless. Most systems run it by default, and most admins forget it's even there once the guest comes online.