Cloud Security
Ubuntu Pro launches for Google Cloud
Ubuntu Pro - the premium version of Ubuntu - is now ava...
Tigera’s Open Source Calico Selected to Address Kubernetes Network Policy in RKE 2 Clusters
Tigera, a leader in Kubernetes security and observabili...
SUSE Corrals Rancher Labs Into Latest Updates Placeholder Image
Rancher Labs headlined SUSE’s recent SUSECON Digital 20...
Using Dynamic Admission Control to Secure Your Kubernetes’ Supply Chain
Kubernetes adoption is up - and so is the number of sec...
Microsoft buys Linux distribution maker Kinvolk to boost Azure cloud services
Microsoft has bought Flatcar Linux distro maker Ki...
Shells makes using Linux in the cloud incredibly easy
Looking for a versatile virtual Linux desktop or server...
5 cloud security basics and best practices
How much do you know about cloud security? Companies th...
Secure DevOps Practices Expected to Increase for Cloud Apps
Very few companies are securing the majority of their c...
How Cloud-Based Automation Can Keep Business Operations Secure
Cloud computing has the potential to greatly improve an...
4 open source cloud security tools
Find and eliminate vulnerabilities in the data you stor...
Cryptography
Google Chrome for Linux is getting DNS-over-HTTPS, but there's a catch
Google Chrome for Linux is getting DNS-over-HTTPS, but ...
Serious Security: OpenSSL fixes two high-severity crypto bugs
OpenSSL has patched two high-severity crypto bugs. Upgr...
SSH Attack Vector: Dormant & Forgotten Keys
SSH keys play a critical role in server and network sec...
The What, Why & How of SSH Protocol
"Modern challenges require modern security approaches."...
The Case Against Full-Disk Encryption
Are you using full-disk encryption to protect your data...
Cartesi Launches 'Descartes' SDK Portal - Future of DApps
Cartesi has announced the launch of their Descartes SDK...
6 ways HTTP/3 benefits security (and 7 serious concerns)
HTTP/3 brings improved performance and reliability, as ...
IBM releases toolkit aimed at keeping data encrypted even while in use
IBM's new toolkit, which will soon be available for Lin...
Wireguard – the open-source answer to VPN shortfalls?
Could Wireguard be the open-source answer to VPN shortf...
Desktop Security
Linux Mint 20.2 beta ISOs undergo testing and are due soon
Linux Mint 20.2 "Uma" beta ISOs are undergo testing and...
Cinnamon 5.0 Desktop Environment Released with Support for Updating Spices, More
Cinnamon 5.0 has been released with many improveme...
Linux Mint 20.2 'Uma' to get beta release by mid-June
Linux Mint 20.2 'Uma' is set for a beta release by mid-...
KDE Frameworks 5.82 Released with More Than 200 Changes
The KDE Project has released KDE Frameworks 5.82 as the...
Firewalls
Call for Contributors with Knowledge of Linux Firewalls!
Greetings fellow Linux security enthusiasts,
Intereste...
IPFire Linux Firewall Distro Improves Its Intrusion Prevention System
Are you familiar with IPFire - the Linux firewall distr...
Soldering spy chips inside firewalls is now a cheap hack, shows researcher
The tiny ATtiny85 chip doesn’t look like the next big c...
Raluca Ada Popa: Her computer security method could make firewalls a thing of the past
Raluca Ada Popa found a fix for one of cybersecurity’s ...
DNS Firewalls Could Prevent Billions in Losses to Cybercrime
DNS protection could prevent approximately one-third of...
CUJO Smart Firewall vulnerabilities exposed home networks to critical attacks
Security researchers have uncovered a swathe of serious...
Government
Critical Update: Do You Know What’s In Your Software?
In the wake of several major cybersecurity incidents - ...
New Republican bill latest in long line to force encryption backdoors
Here we go again - Senate Republicans push a new bill t...
Ethical hackers swarm Pentagon websites
Hackers are crawling all over the US Department of Defe...
Lindsey Graham’s new bill would end the internet as we know it
If Sen. Lindsey Graham gets his way, the federal govern...
A new senate bill would create a US data protection agency
Europe’s data protection laws are some of the strictest...
South Korea's government explores move from Windows to Linux desktop
In what may prove to be the biggest migration from Wind...
How the Iowa caucus app went wrong and how open source could have helped
Opinion: It was incompetence, not politics, that led to...
Washington State Lawmakers Introduce Legislation Regulating Data Privacy, Facial Recognition
Following in the footsteps of their West Coast neighbor...
US military loves Linux
The US government is increasingly using open-source sof...
Defense Department To Congress: 'No, Wait, Encryption Is Actually Good; Don't Break It'
As Senate Judiciary Committee Chair Lindsey Graham has ...
Hacks/Cracks
Linux Commands and Utilities Commonly Used by Attackers
Uptycs' threat research team has observed several insta...
How a malicious bot tries to evade detection by morphing
The Necro Python bot - which targets both Linux and Win...
Researchers Uncover Stealthy Linux Malware That Went Undetected for 3 Years
Researchers have discovered a dangerous strain of Linux...
Camera hack peels back layers of embedded Linux
Embedded Linux devices are everywhere these days, and s...
New Linux, macOS malware hidden in fake Browserify NPM package
A new malicious package targeting NodeJS developers usi...
PHP Maintainers Shared Update On PHP Source Code Compromise
The maintainers of the PHP programming language have is...
Chinese hackers target Linux systems with RedXOR backdoor
Linux servers are being targeted with sophisticated mal...
Windows and Linux servers targeted by new WatchDog botnet for almost two years
Both Linux and Windows servers are being targeted by th...
Malware: Group Targeting Embassies Adds ‘Drovorub’ Campaign
Russian digital espionage group Fancy Bear has incorpor...
A New Linux Malware Targeting High-Performance Computing Clusters
Kobalos - A devious new Linux malware - targe...
IoT Security
Linux Foundation creates standards for voice technology with major partners
The Linux Foundation is teaming up with companies like ...
Putting an Ultra-Tiny Linux Board in a Phone Charger…Eventually
A project that aims to put an ultra-tiny Linux board in...
Network Security
Should You Block Connections to Your Network From Foreign Countries?
This LinuxSecurity.com article featured on the frontpag...
What Is Penetration Testing and How Does It Improve Network Security?
The best way to improve and guarantee your network’s se...
IPFire Linux Firewall Distro Now Supports WPA3 to Make Wi-Fi Safe Again
The IPFire 2.25 Core Update 153 release brings WPA...
Windows Subsystem for Linux 2 bypasses the Windows 10 Firewall
The Windows Subsystem for Linux 2 will bypass the Windo...
WireGuard VPN is a step closer to mainstream adoption
Linux network stack maintainerDavid Millerhascommittedt...
The VPN is dying, long live zero trust
The traditional VPN is being replaced by a smarter, saf...
Research: 5G Networks Still Vulnerable to Location Tracking, Downgrading Attacks
A group of researchers have found 11 flaws in 5G protoc...
7 Ways VPNs Can Turn from Ally to Threat
VPNs are critical pieces of the security infrastructure...
What is Wireguard? Secure, simple VPN still in development
Are you familiar with Wireguard? The Wireguard VPN offe...
VPNs' Future: Less Reliant on Users, More Transparent, And Smarter
Interested in what the future has in store for VPNs? Vi...
Organizations/Events
Red Hat Brings Red Hat Universal Base Image to Docker Hub
Red Hat has brought its Universal Base Image to Docker ...
Linux's Technical Advisory Board reports on the UMN 'Hypocrite Commits' patches
The Linux Foundation Technical Advisory Board reports o...
University of Minnesota researchers issue apology letter to the Linux community
The researchers who prompted the University of Minnesot...
Greg Kroah-Hartman bans University of Minnesota from Linux development for deliberately buggy patches
Some researchers from the University of Minnesota ...
Linux Foundation creates research division to study open source impact
In the latest sign of the growing influence o...
Microsoft: We've open-sourced this tool we used to hunt for code by SolarWinds hackers
Microsoft is open-sourcing the CodeQL queries ...
Sysdig Donates Module to CNCF to Improve Linux Security
As part of an effort to advance Linux security, Sysdig ...
Red Hat closes StackRox Kubernetes security acquisition
With the popular Linux distro's acquisition of StackRox...
Linux Foundation offers free Node.js class
Node.js is wildly popular - but the open-source JavaScr...
Linux 5.11 is out with AMD and Intel improvements (and Linus Torvalds is happy)
Linus Torvalds has released Linux kernel version 5.11 w...
Privacy
Ring Changed How Police Request Door Camera Footage: What it Means and Doesn’t Mean
Amazon Ring has announced that it will change...
Everything You Need to Know About Using Tor Browser on Linux
Want to protect your privacy online? Here's how to get ...
Amazon devices will soon automatically share your Internet with neighbors
Amazon's experiment wireless mesh networking has turned...
Most loved programming language Rust sparks privacy concerns
Rust developers have repeatedly raised concerned about ...
Cheap baby monitors and security cameras – widespread flaw allows remote viewing
New research highlights that cheap baby monitor and sec...
Microsoft Azure and Canonical Ubuntu Linux have a user privacy problem
Security advisor Luca Bongiorni spun up an Ubuntu ...
The Home Directory Will be Private in Ubuntu 21.04, What Does it Mean?
Until now, users on the same Ubuntu system could access...
Tor Browser 10.0.5
Protect your privacy and defend yourself against networ...
Dell enables Linux hardware privacy controls
Dell is adding code into Linux to support its h...
Google quietly adds revolutionary VPN protocol to next Android OS
Google has added support for Wireguard - a VPN that use...
Security Projects
The ISRG wants to make the Linux kernel memory-safe with Rust
The Internet Security Research Group - backed by Google...
Open-source security: Google has a new plan to stop software supply chain attacks
To tackle the growing threat of attacks on the software...
As Linux Foundation's Zephyr Project Turns Five, Addressing Constrained Device Challenges is More Important Than Ever
As the Linux Foundation's Zephyr Project celebrate...
Cockpit: A Beginner Friendly Web Based Linux Server Manager
Cockpit is a beginner friendly web-based Linux server m...
Linux Kernel 'Linux 5.13' Will Support Apple M1 System-on-Chip | Now Available for Public Testing
The upcoming Linux kernel 5.13 release will support App...
Tails 4.18 Anonymous OS Released with Tor Browser 10.0.16, Updated Intel Firmware
The Tails amnesic incognito live system (a.k.a. anonymo...
How open source security flaws pose a threat to organizations
A majority of the open source codebases found in commer...
Rust support in Linux may be possible by 5.14 release: Torvalds
The first patches for Rust support in the Linux kernel ...
Google backs effort to bring Rust to the Linux kernel
Google's Android Team is backing an effort to introduce...
Linux kernel will soon have initial support for Apple’s M1 chipset
Thanks to Asahi Linux, the Linux kernel will soon ...
Security Trends
Vulnerability Detection and Patching: A Survey Of The Enterprise Environment
Detecting vulnerabilities and managing the associated p...
Live Patching Requires Reproducible Builds – and Containers Are the Answer
Live patching can improve security and minimize downtim...
Stale Open Source Code Rampant in Commercial Software: Report
A new report shows that stale open-source code is rampa...
The Role of Ethics in Cybersecurity Studies
University of Minnesota researchers' recent "experiment...
An Abridged Guide to the Enterprise Linux Landscape
From robust security to high levels of flexibility, Lin...
Minified Linux Offerings Boost Containers and Edge Processing
Edge locations are often unstaffed, or staffed by techn...
Why Is Linux Hosting So Much More Popular Than Windows?
Linux prevails as the clear choice for web hosting due ...
The Rise of Open Source: Pandemic, Economy, Efficiency, Trust
Those familiar with Open Source know that it comes with...
Securing Software Supply Chains and Dependency Confusion – An Industry Perspective
Experts including Dr. David Wheeler, Director of O...
Why it's time to stop setting SELinux to Permissive or Disabled
Too many admins disable SELinux or set it to Permissive...
Security Vulnerabilities
Unpatched Flaw in Linux Pling Store Apps Could Lead to Supply-Chain Attacks
Cybersecurity researchers have disclosed a critical unp...
RHEL and CentOS 7 Users Get New Kernel Security Update to Fix Intel Graphics Flaws
RHEL (Red Hat Enterprise Linux) and CentOS Linux 7...
Firefox 89.0.1 Released to Improve WebRender Performance, Fix Scrollbars on GTK Themes
Mozilla has released Firefox 89.0.1 to fix various bugs...
Seven Year Old Privilege Escalation Vulnerability Found In Some Linux Distros, Patch Now
A seven-year-old Linux local privilege escalation bug h...
Linux system service bug lets you get root on most modern distros
Unprivileged attackers can get a root shell by exploiti...
Google fixes sixth Chrome zero-day exploited in the wild this year
Google has released Chrome 91.0.4472.101 for Windows, M...
Linux Porter Discovered M1 Covert Channel Flaw Named ‘M1RACLES’
Hector Martin, a hacker who is porting Linux to Apple S...
Raft of Exim Security Holes Allow Linux Mail Server Takeovers
A set of dangerous vulnerabilities have been discovered...
Linux kernel bug opens door to all manner of attacks
Security researchers have discovered an information dis...
Linux kernel vulnerability exposes stack memory, causes data leaks
An information disclosure vulnerability in the Lin...
Server Security
UChecker tool scans Linux servers for outdated libraries
Security teams running Linux servers now have...
5 Best free to use Linux Server distributions for 2021
Learn about the selection of excellent - and free! - se...
Docker malware is now common, so devs need to take Docker security seriously
Three years after the first malware attacks targeting D...
SELinux changes for KVM-separated (Kata) containers
Learn about SELinux types that improve container securi...
New Kaiji malware targets IoT devices via SSH brute-force attacks
Another dangerous strain of malware targeting Linux ser...
Unix Test Lab Guide Project
Thanks to my buddy Duane Dunston, MS, Assistant Profe...
New Roboto botnet emerges targeting Linux servers running Webmin
A cybercrime group is enslaving Linux servers running v...
Thousands of servers infected with new Lilocked (Lilu) ransomware
Researchers have identified a new strain of ransomware ...
Vendors/Products
Debian 10.10 released with latest security updates
Debian 10.10 has been released with the latest sec...
Security-Oriented Alpine Linux 3.14 Released with KDE Plasma 5.22, QEMU 6.0, and More
The security-oriented Alpine Linux distro has been upda...
MX Linux: A Great Linux Distro Designed with the User in Mind
Looking for s secure, reliable and user-friendly Linux ...
Kali Linux 2021.2 Released for Ethical Hackers with New Tools, Raspberry Pi Improvements
Offensive Security has announced the release of Kali Li...
CloudLinux OS Solo is a Low-Cost WordPress Optimized Linux OS
The new CloudLinux OS Solo commercial Linux distro come...
Download AlmaLinux & Oracle Linux based on RHEL 8.4 now!
Looking for a free and secure CentOS replacement? AlmaL...
Oracle Linux 8.4 Released with Improved Security, Based on Red Hat Enterprise Linux 8.4
Oracle has released Oracle Linux 8.4 as the latest (and...
Google's latest Chrome update brings some great new features - especially for Linux users
Google Chrome 91 has arrived with important security fi...
TuxCare Services from CloudLinux Help Support U.S. Department of Defense and Space Force National Security Mission
CloudLinux TuxCare Linux enterprise support services pr...
Canonical Releases New Linux Kernel Live Patch for Ubuntu 20.04 LTS and 18.04 LTS
Canonical has released a new Linux kernel live patch fo...
