Cloud Security
EmojiDeploy Attack Chain Targets Misconfigured Azure Service
Multiple misconfigurations in a service that underpins ...
Jan 26, 2023

Don’t Forget Open Source Software (OSS) when Assessing Cloud App Security
The software development process is getting quicker. De...
Jan 24, 2023

Consider Open Source Software While Evaluating The Security Of Cloud Applications
The pace of software development is accelerating. Devop...
Jan 17, 2023

Kinsing Malware Targets Kubernetes
Kinsing is an old-school Linux/Unix Executable and Link...
Jan 16, 2023

Microsoft: Kubernetes Clusters Hacked in Malware Campaign via PostgreSQL
The Kinsing malware is now actively breaching Kubernete...
Jan 11, 2023

4 Ways to Use Kernel Security Features for Process Monitoring
The large attack surface of Kubernetes’ default pod pro...
Jan 06, 2023

Kubernetes as-a-Service, Security Issues and Skills Shortages -- Container Predictions for 2023
Containers have become increasingly popular in recent y...
Jan 02, 2023

What Sysadmins Want to Know about OpenShift and Kubernetes in 2022
The Enable Sysadmin community continues to answer key q...
Dec 29, 2022

AWS Plugs Holes in ECR APIs
AWS has patched a vulnerability in its Elastic Containe...
Dec 18, 2022

New Kubernetes 1.26 Release Boosts Security, Storage, Teases Dynamic Resource Allocation
In the cloud-native space, where applications are purpo...
Dec 14, 2022

Cryptography
Clop Ransomware Flaw Allowed Linux Victims to Recover Files for Months
The Clop ransomware gang is now also using a malware va...
Feb 07, 2023

Intel's "DOITM" Security Feature Not Intended For Always-On Use, Linux Patches To Be Revised
Last week I wrote about Linux developers evaluatin...
Feb 06, 2023

Linux Will Now Better Handle AMD SEV-SNP To Avoid Undefined Behavior For Old VMs
Merged on Sunday prior to tagging Linux 6.2-rc6&nb...
Jan 30, 2023

New Boldmove Linux Malware Used to Backdoor Fortinet Devices
Suspected Chinese hackers exploited a recently disclose...
Jan 24, 2023

What is WireGuard?
The primary goal of any VPN is to create a se...
Jan 19, 2023

Linux 6.3 To Support Pluton's CRB TPM2 On AMD Ryzen CPUs
If things go as planned, the TPM2 device found within M...
Jan 17, 2023

Sigstore Announces the First Stable Release of Code and Certificate Signing Tool for Python
Sigstore community today announced the first stable rel...
Jan 16, 2023

Latest IPFire Hardened Linux Firewall Distro Release Future-Proofs VPN Cryptography
IPFire developer Peter Müller announced t...
Jan 02, 2023

Introducing Shufflecake: Plausible Deniability For Multiple Hidden Filesystems on Linux
Thursday the Kudelski Group's cybersecurity divisi...
Dec 14, 2022

Version 252 of systemd, As Expected, Locks Down the Linux Boot Process
The fall version of systemd is here, with support for i...
Nov 09, 2022

Desktop Security
X.Org Server Hit By New Local Privilege Escalation Vulnerability
The X.Org Server, a commonly used component to the...
Feb 07, 2023

Vanilla OS Offers a New Take on Security for the Linux Desktop
If you're looking for a new operating system that takes...
Jan 15, 2023

Linux Mint 21.1 “Vera” Is Now Available for Download
The highly anticipated Linux Mint 21.1 “Vera” release h...
Dec 19, 2022

Vanilla OS Is a Brilliant Take on the Linux Desktop
Jack Wallen takes a look at a new Linux distribution wi...
Dec 16, 2022

First Look at Linux Mint 21.1 Beta with the Cinnamon 5.6 Desktop Environment
The beta version of the upcoming Linux Mint 21.1 “Vera”...
Dec 07, 2022

Microsoft Teams: Progressive Web App Arrives for Linux Users
Teams Linux users should switch over to the PWA to get ...
Nov 27, 2022

Why I Love My Chromebook: Reason 1, It's a Linux Desktop
We appreciate power but sometimes it's about getting up...
Nov 27, 2022

Red Hat Releases a Virtual Red Hat Enterprise Linux Desktop on AWS
The cloud Desktop-as-a-Service gains traction, as you c...
Oct 24, 2022

Want to Ditch Windows? Windowsfx May Be the Ideal Linux Distribution for You
Here's a Linux distribution that does a remarkable job ...
Oct 20, 2022

Laugh All You Want. There Will Be a Year of the Linux Desktop
It has become a running joke. "20xx will be the year of...
Oct 14, 2022

Firewalls
Chinese Hackers Exploited Recent Fortinet Flaw as 0-Day to Drop Malware
A suspected China-nexus threat actor exploited a recent...
Jan 23, 2023

Firewalld 1.3 Released With Easier Firewall Management For More Services
Firewalld 1.3 is out as the newest version of this open...
Jan 15, 2023

WAFs of Several Major Vendors Bypassed With Generic Attack Method
Researchers at industrial and IoT cybersecurity firm Cl...
Dec 14, 2022

OpenWrt 22.03 released with Firewall4, Now Supports Over 1,580 Embedded Devices
OpenWrt 22.03 open-source Linux operating system for ro...
Sep 19, 2022

The 10 Best Free Linux Firewall Tools
For those who are serious about their network security,...
Dec 14, 2022

IPFire Linux Firewall Distro Improves Its Intrusion Prevention System and Security
Peter Müller has announced the release and general...
Jun 14, 2022

Nasty Linux netfilter firewall security hole found
How embarrassing! It turns out there was a security hol...
Mar 17, 2022

4 Best Linux Open source Firewall for Cyber Security – 2022
Learn about some of the best-known open-source firewall...
Mar 09, 2022

IPFire Linux Firewall Now Supports exFAT, pe
IPFire 2.27 Core Update 161 has been released as a new ...
Dec 01, 2021

BPF-Based Linux Firewall "bpfilter" Shows Impressive Performance Potential
Generating much excitement back in 2018 was bpfilt...
Sep 28, 2021

Government
OpenSSF Aimed to Stem Open Source Security Problems in 2022
In 2022, the Open Source Software Foundation (OpenSSF) ...
Jan 25, 2023

Exploited Control Web Panel Flaw Added to CISA 'Must-Patch' List
The US government’s cybersecurity agency CISA is giving...
Jan 19, 2023

DISA Issues Security Technical Implementation Guide for TOSS 4 Operating System
The Defense Information Systems Agency has released a s...
Jan 15, 2023

Government Issues ‘High’ Severity Security Alert for THESE Google Users
As per the latest CERT-In security alert, multiple vuln...
Dec 14, 2022

The US Securing Open Source Software Act of 2022 Is a Step in the Right Direction
Cybersecurity continues to be a hot topic. More and mor...
Dec 14, 2022

NSA’s Plea: Stop Using C and C++ (Because You’re Idiots)
The C and C++ languages are unsafe. Instead, the U...
Nov 27, 2022

NSA’s and CISA’s Recent Security Guidance: The Good and the Bad
The NSA and CISA released the guide “Securing the Softw...
Oct 22, 2022

New Cyber Bill Aims To Fix Open-Source Security in Government
Federal legislators have begun the process of better se...
Oct 10, 2022

New Ransomware Hits Windows, Linux Servers of Chile Govt Agency
Chile's national computer security and incident respons...
Sep 30, 2022

The US Military Wants to Understand the Most Important Software on Earth
Open-source code runs on every computer on the planet—a...
Jul 14, 2022

Hacks/Cracks
The Unrelenting Menace of the LockBit Ransomware Gang
The notorious Russian-speaking cybercriminals grew succ...
Jan 26, 2023

Hackers Use Golang Source Code Interpreter to Evade Detection
A Chinese-speaking hacking group tracked as ‘DragonSpar...
Jan 24, 2023

Hackers Deploy Open-Source Tool Sliver C2, Replacing Cobalt Strike, Metasploit
An increasing number of threat actors have started rely...
Jan 24, 2023

Stealthy Malware Distribution Involves Polyglot Files
Threat actors have been leveraging polyglot and malicio...
Jan 19, 2023

GhostSec’s Claimed ICS Ransomware Attack Questioned
SecurityWeek reports that pro-Ukraine hacktivist group ...
Jan 18, 2023

Python Package Index Found Stuffed with AWS Keys and Malware
The Python Package Index, or PyPI, continues to surpris...
Jan 16, 2023

Security Researchers Report Linux Malware with Cryptocurrency Miner Payload
South Korean cybersecurity firm AhnLab Security Emergen...
Jan 15, 2023

PyTorch Poisoned in Software Supply Chain Attack
If you downloaded PyTorch-nightly on Linux via pip betw...
Jan 15, 2023

This New Linux Malware Floods Machines with Cryptominers and DDoS Bots
Cybersecurity researchers have spotted a new Linux ...
Jan 09, 2023

PyTorch Suffers Supply Chain Attack via Dependency Confusion
Users who deployed the nightly builds of PyTorch betwee...
Jan 05, 2023

IoT Security
Microsoft Applies Coat of Rust to Azure Sphere IoT Platform
The hope? To grease the security skids for internet-con...
Jan 16, 2023

Zerobot Malware Now Shooting for Apache Systems
The Zerobot botnet, first detected earlier this month, ...
Jan 15, 2023

New DDoS Botnet Malware Infecting Windows, Linux, and IoT Devices
A cross-platform botnet, ‘MCCrash’ that starts out from...
Dec 20, 2022

New Go-Based Botnet Zerobot Exploits Dozens of Flaws
Researchers discovered a new Go-based botnet called&nbs...
Dec 14, 2022

IoT/Edge Dev Survey Shows AI, Container and Linux Popularity
For the eighth year, the Eclipse Foundation has surveye...
Dec 14, 2022

Shikitega: New Malware Program Targeting Linux
AT&T Alien Labs has discovered Shikitega, a new Lin...
Sep 30, 2022

Experts Spotted a New Stealthy Linux Malware Dubbed Shikitega
A new Linux malware dubbed Shikitega leverage...
Sep 19, 2022

Ubuntu Core 22 Wants to Power the Next Generation of IoT Devices
Canonical, the company behind top Linux distro&nbs...
Jun 20, 2022

Establishing a Root of Trust in Embedded Linux and IoT
With IoT, 5G and embedded devices becoming a larger par...
May 18, 2022

BusyBox flaws highlight need for consistent IoT updates
Security researchers have found and reported 14 vulnera...
Nov 11, 2021
Network Security
Attackers Deploy Sophisticated Linux Implant on Fortinet Network Security Devices
In December network security vendor Fortinet disclosed ...
Jan 17, 2023

Linux Dodges Serious Wi-Fi Security Exploits
What appeared to be one simple Linux Wi-Fi networking s...
Oct 22, 2022

10 Essential Linux Tools for Network and Security Pros
Picking just 10 Linux open source security tools isn’t ...
Jan 15, 2023

7 Key Benefits of Network Monitoring
Businesses rely on their networks to stay connected and...
Jun 10, 2022

Log4j Flaw Needs Immediate Remediation
After nearly two years of adopting major network and se...
Dec 20, 2021

But why that VPN? How WireGuard made it into Linux
Even the best of ideas can take their own sweet time ma...
Dec 09, 2021

The 8 Best Wireless Penetration Testing Tools for Linux
Protecting your wireless networks from infiltrators is ...
Sep 20, 2021

Should You Block Connections to Your Network From Foreign Countries?
This LinuxSecurity.com article featured on the frontpag...
Feb 15, 2021

What Is Penetration Testing and How Does It Improve Network Security?
The best way to improve and guarantee your network’s se...
Dec 25, 2020

IPFire Linux Firewall Distro Now Supports WPA3 to Make Wi-Fi Safe Again
The IPFire 2.25 Core Update 153 release brings WPA...
Dec 24, 2020

Organizations/Events
Linux Foundation Launches Open Source Metaverse Group to Drive Interoperability
The Open Metaverse Foundation (OMF), lau...
Feb 06, 2023

The Linux Foundation Wants to Set Up its Own Open Source Metaverse
The Linux Foundation has announced plans to b...
Jan 23, 2023

Open Source 2022 Wins and Losses
In the face of economic headwinds and a worsening probl...
Jan 19, 2023

OpenSSF Outlook Q1 2023: How To Avoid the Next Log4Shell and Other OSS Security Reflections
“Log4j has been around for 20 years; it’s become embedd...
Jan 16, 2023

OpenSSF Membership Exceeds 100, With Many New Members Dedicated to Securing Open Source Software
The Open Source Security Foundation (OpenSSF)...
Jan 15, 2023

Linux Foundation Adopts Microsoft Framework for Supply Chain Security
Microsoft announced that its Secure Supply Ch...
Jan 15, 2023

Unveiling of IBM LinuxONE 4 Emperor
IBM launched the next generation of its enterprise-grad...
Nov 19, 2022

Using Sysmon for Linux to Monitor Against MITRE ATT&CK Techniques
There was a lot covered at this year’s 2022 RhythmWorld...
Nov 09, 2022

Enterprise Encryption for Linux
It's no secret that the IT department has struggled wit...
Oct 11, 2022

Linux Luminaries Discuss Efforts to Bring Rust to the Kernel
Both Linus Torvalds' Open Source Summit keynote and Jon...
Sep 19, 2022

Privacy
Tails 5.9 Fixes Numerous Bugs and Enhances Security Measures
Tails 5.9 mainly focuses on bug fixes from the previous...
Jan 30, 2023

Privacy-Focused Tails 5.8 Enables Wayland by Default, Adds New Persistent Storage
This release also introduces QR code scanning of Tor br...
Jan 15, 2023

The 3 Best Terminal-Based Web Browsers for Linux
Avoid distractions on the web and regain control of you...
Jan 15, 2023

Best Privacy & Security Tools For Linux
There are many benefits provided by the internet, howev...
Jan 15, 2023

10 Essential Privacy and Security Apps for Linux Desktops
Linux-based operating systems have a reputation for bei...
Dec 14, 2022

Parrot OS 5.1 Brings a Host of Updates and New Docker Repo
Updated security tools, IoT performance improvements, a...
Oct 05, 2022

LibreWolf 105.0.1-1
LibreWolf is an independent “fork” of Firefox, with the...
Sep 30, 2022

8 Online Best Dark Web Search Engines for Tor Browser (2022)
When it comes to the best dark web search engines, firs...
Sep 25, 2022

The 6 Best Private Encrypted Chat Apps for Linux Users
For those who want more control over their privacy whil...
Sep 25, 2022

Brave vs. Tor: Which Browser Offers More Security and Privacy?
Brave and Tor are two of the most secure web browsers y...
Aug 08, 2022

Security Projects
Patches Updated For Hooking eBPF Programs Into The Linux Kernel Scheduler
Published back in November were a set of patches for&nb...
Jan 30, 2023

A DevSecOps Process for Node.js Projects
Node.js is an open source development platform for runn...
Jan 24, 2023

Linux FU: UEFI Booting
Unless your computer is pretty old, it probably uses UE...
Jan 23, 2023

More Rust - Chrome And Servo
Rust is the language we are all expecting to save us an...
Jan 19, 2023

AgStack: Linux Foundation Project Will Bring Farms Online
The Linux Foundation is undertaking the massive task of...
Jan 18, 2023

Linux Community Presses for RNDIS to be Marked as Broken
The next Linux kernel cycle we could see upstream dis...
Jan 16, 2023

Linux is All Set to Disable Microsoft's RNDIS Drivers
The Linux Kernel will no longer support RNDIS drivers. ...
Jan 15, 2023

Linux Kernel 6.0 Reaches End of Life, Users Urged to Upgrade to Linux 6.1
The time has come to say goodbye to the Linux 6.0 kerne...
Jan 13, 2023

Linux Preparing To Disable Drivers For Microsoft's RNDIS Protocol
With the next Linux kernel cycle we could see upstream ...
Jan 13, 2023

Linux Kernel 4.9 Reaches End of Life After 6 Years of Support
After being supported for a little more than six years,...
Jan 09, 2023

Security Trends
Protecting Against Linux Malware
Linux is a popular and powerful operating system, but i...
Feb 06, 2023

BlackBerry: Cyberattacks Are Being Launched Once Every Minute
Threat actors are evolving to target a wide variety of ...
Jan 26, 2023

Linux Malware Rates Rise to Record Levels Amid Hacker Inconsistency
After rising and falling since 2021, new Linux malware ...
Jan 25, 2023

An IBM Hacker Breaks Down High-Profile Attacks
For bad actors, the more intelligence they have on thei...
Jan 24, 2023

C++ Programming Language and Safety: Here's Where It Goes Next
There's been a shift towards 'memory safe' languages. S...
Jan 23, 2023

New Linux Malware Hits Record High, Rising by 50% in 2022
The first quarter of 2022 revealed an alarming surge in...
Jan 19, 2023

Linux Operating System Market Predicted to Grow at a CAGR of 19.8% by 2029
The global linux operating system market was valued at ...
Jan 18, 2023

New Data Shows Constant Rise of New Malware on Windows, Linux, MacOS and Android
2022 has been a year full of surprises and twists, but ...
Jan 15, 2023

7 Mistakes New Linux Users Make (and How to Avoid Them)
Learning Linux can be a frustrating experience where ev...
Jan 15, 2023

The ‘Viral’ Secure Programming Language That’s Taking Over Tech
Rust makes it impossible to introduce some of the most ...
Jan 15, 2023

Security Vulnerabilities
Sudo Has a High-Severity Vulnerability that Low-Privilege Attackers Might Exploit to Get Root Access
Sudo is one of the most essential, powerful, and often ...
Jan 23, 2023

Critical Linux Kernel flaw affects SMB servers with ksmbd enabled
Experts warn of a critical Linux Kernel vulnerability (...
Jan 19, 2023

A New Privilege Escalation Vulnerability in the Linux Kernel, Enables a Local Attacker to Execute Malware on Vulnerable Systems
A new privilege escalation vulnerability has been ident...
Jan 17, 2023

Patch Now: Serious Linux Kernel Security Hole Uncovered
The Zero Day Initiative (ZDI), a zero-day security rese...
Jan 16, 2023

Alert: Hackers Actively Exploiting Critical "Control Web Panel" RCE Vulnerability
Malicious actors are actively attempting to exploit a r...
Jan 15, 2023

Ubuntu Users Get Massive Kernel Security Updates, More Than 20 Vulnerabilities Patched
Canonical has published new kernel security updates for...
Jan 09, 2023

Many WordPress Plugin Flaws Leveraged by Novel Linux Malware
Thirty security vulnerabilities in numerous outdated Wo...
Jan 05, 2023

What Is the CVE-2021-4034 Polkit Privilege Escalation Vulnerability?
Here's everything you need to know about the CVE-2021-4...
Jan 02, 2023

Back to work, Linux Admins: You Have a CVSS 10 Kernel Bug to Address
Merry Christmas, Linux systems administrators: Here's a...
Dec 28, 2022

Why You Should Update File Sharing Platform, Samba, Right Now
Vulnerabilities have been found in Samba, software that...
Dec 26, 2022

Server Security
Linux Version of Royal Ransomware Targets VMware ESXi Servers
Royal Ransomware is the latest ransomware operation to ...
Feb 06, 2023

Critical zero day vulnerability in Linux Kernel Allows DoS Attack
This flaw, which has been identified that affects the k...
Jan 15, 2023

Microsoft Warns of New Minecraft DDoS Malware Infecting Windows, Linux
A new cross-platform malware botnet named 'MCCrash' is ...
Dec 18, 2022

Microsoft Defender for Business Adds Server Protections for SMBs
Microsoft launched a preview of new server pr...
Dec 14, 2022

Top 15 Tips To Secure Your Linux VPS UK
Opting for the best Linux VPS UK Hosting for your onlin...
Dec 14, 2022

The Best Open Source Tools to Secure Your Linux Server
While Linux does have a variety of security features to...
Dec 14, 2022

381,000-plus Kubernetes API servers 'exposed to internet'
A large number of servers running the Kubernetes API ha...
May 23, 2022

10 popular Open-Source Tools to Secure Your Linux Server in 2022
Learn about 10 great open-source tools to improve the s...
Dec 22, 2021

How to use this unique method of securing SSH
Learn about a unique and effective method of securing S...
Oct 08, 2021

The 10 Best Tools to Scan Your Linux Server for Malware and Security Flaws
Worried that your Linux server might be infected with m...
Jul 27, 2021

Vendors/Products
Microsoft Upgrades Defender to Lock Down Linux Gear for its Own Good
Organizations using Microsoft's Defender for Endpoint w...
Feb 06, 2023

Red Hat Enterprise Linux arrives in Oracle’s cloud
Red Hat and Oracle announced jointly Tuesday that they ...
Feb 06, 2023

Azure Stack HCI Gets Extra Protection with 'Long-Requested Feature'
Microsoft upgraded its Windows Admin Center, with a foc...
Jan 19, 2023

Microsoft's Security Update Guide To Report on CBL-Mariner Linux Vulnerabilities
Microsoft's Security Update Guide, which chronicles Mic...
Jan 15, 2023

The 8 Best Free Cybersecurity Tools to Keep You Safe as a Remote Worker
More of us are working from home. What can you do to ma...
Jan 15, 2023

AMD Continued Its Great Linux Embrace In 2022 With Better Launch-Day Support + Optimizations
AMD in 2022 continued its open-source/Linux support emb...
Jan 02, 2023

Debian GNU/Linux 11.6 “Bullseye” Released with 78 Security Updates and 69 Bug Fixes
The Debian Project has announced the general availabili...
Dec 22, 2022

Debian vs. Arch Linux: Which is Better for You?
Debian and Arch Linux are two of the most popular open ...
Dec 19, 2022

Kali Linux 2022.4 Ethical Hacking Distro Arrives with Linux 6.0, Official PinePhone Support
Offensive Security has announced the release and g...
Dec 14, 2022

Kali Linux's Last Update for the Year Brings a Lot of Early Christmas Gifts
Kali Linux is an open-source, Debian-based distro focus...
Dec 14, 2022
