Stay Ahead With Linux Security Features
threat detection scalability Building a SIEM is easier than scaling one. Most open-source deployments start as a simple "all-in-one" server. It is easy to set up, but that design rarely survives the transition from a lab to a production workload. . A SIEM watching 20 endpoints is not doing the same job as one watching 500. More endpoints mean more logs; more logs require more storage; more storage makes search heavier. Eventually, the very architecture that made your lab easy to deploy becomes the reason your production...
Jun 04, 2026
security advisory apache A newly disclosed attack technique called HTTP/2 Bomb is drawing attention because it targets the software that sits at the front of much of the Linux internet. Apache HTTP Server, NGINX, Envoy, and the ingress layers that many Kubernetes environments depend on can be forced into consuming disproportionate amounts of memory using relatively small amounts of attacker traffic. . For Linux administrators, the concern is not the HTTP/2 protocol itself. It is the possibility that a single...
Jun 04, 2026
security advisory important The compromise of Nx Console shows how much infrastructure now sits behind a single developer account. GitHub repositories, CI/CD pipelines, container build systems, Terraform projects, Kubernetes deployments. None of those systems was the initial target. The workstation was. . Attackers did not need a Linux privilege escalation bug or a remote code execution chain. They needed developers to trust a tool they were already using. For many organizations, that was enough. What Happened? Federal...
Jun 03, 2026
security advisory open-source You remove the malware. You rotate the compromised credentials. You patch the original vulnerability and close the ticket. Two weeks later, the attacker is back. . What happened? You didn't lose the battle at the exploit; you lost it at the cleanup. In many modern Linux intrusions, the malware you found wasn't the main problem—it was the fallback mechanisms left behind. These hooks quietly restore attacker access the moment you look away. If you clean a host but miss these persistence layers,...
Jun 02, 2026
security advisory Red Hat Researchers investigating a campaign now tracked as Miasma found that more than 30 packages in Red Hat's @redhat-cloud-services npm namespace had been altered to deliver credential-stealing malware. . The packages weren't being used to deploy ransomware or sabotage systems. From what has been reported so far, the objective appears to have been much simpler: collect credentials from developer environments and use that access elsewhere. GitHub tokens, cloud credentials, SSH keys, and other...
Jun 02, 2026
Refine features
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security features
We found -4 articles for you...
102
security advisorycriticalremote code executionExim: 21Nails Urgent Notice on Remote Code Execution Vulnerability
The Qualys Research Team has discovered multiple critical vulnerabilities in the popular Exim mail server , which they have named 21Nails . Some of these flaws can be chained together to obtain full remote unauthenticated code execution and gain root privileges. With 60 percent of the world’s public email servers worldwide running on Exim, this set of flaws represents a serious threat to many organizations. . Qualys submitted this information to our team yesterday to share with the LinuxSecurity community and offer advice on how to secure Linux systems against this dangerous set of bugs. Patches are now available for the 21Nails vulnerabilities, and security teams should apply these updates as soon as possible prevent dangerous remote code exectuion (RCE) and privilege escalation exploits. Bharat Jogi, Senior manager of Vulnerability and Threat Research at Qualys, explained to LinuxSecurity researchers , "Exim Mail Servers are used so widely and handle such a large volume of the internet's traffic that they are often a key target for hackers. The 21 vulnerabilities we found are critical as attackers can remotely exploit them to gain complete root privileges on an Exim system - allowing compromises such as a remote attacker gaining full root privileges on the target server and executing commands to install programs, modify data, create new accounts, and change sensitive settings on the mail servers. It's imperative that users apply patches immediately." Jogi also offered a broader perspective on the state of Exim mail server security, "This is not the first time Qualys Researchers have identified serious vulnerabilities in Exim Server. Qualys Researchers identified a vulnerability in the Exim server named "RETURN OF THE WIZARD - CVE-2019-10149" in June 2019. This was later exploited by threat actors and NSA had released advisories to warn users of it being exploited by Russian advanced persistent threat (APT) group Sandworm." Have additional questions about 21Nails and how you cansecure your Exim mail server against this set of dangerous vulnerabilities and other similar threats? Our experts would be happy to help you out! Connect with us on social media: Twitter | Facebook | LinkedIn . CISA warns of severe vulnerabilities found in Apache Web Server, advocating for prompt updates to mitigate potential data breaches.. Exim Mail Server, Remote Code Exploit, Security Threats, Patch Management. . Brittany Day
May 05, 2021
•
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More