Cloud Security
Defenders Be Prepared: Cyberattacks Surge Against Linux Amid Cloud Migration
Ransomware in particular poses a major threat, but secu...
Five Things You Need To Know about Linux Container Security
Understand the security benefits and risks associated w...
Primer to Container Security
Containers are considered to be a standard way of deplo...
Log4Shell a huge wake-up call for 95% of security leaders
Security leaders are still dealing with the impact of L...
Hardening Kubernetes Multi-Cluster Environments
Kubernetes has quickly become a de facto tool within en...
NSA on How to Harden Kubernetes
The NSA - the maker of the original secure Linux (...
Linux Malware on the Rise
Ransomware, cryptojacking, and a cracked version of the...
Linux Kernel Bug Allows Kubernetes Container Escape
Hackers could exploit a Linux kernel bug to escape Kube...
Securing Kubernetes at the Infrastructure Level
Infrastructure security is important to get right so th...
Kubernetes security will have a breakout year in 2022
While it’s come a long way over the past year, Kubernet...
Cryptography
WireGuard vs. OpenVPN: Which VPN Protocol Is Best for You?
WireGuard and OpenVPN keep you safe online, but which i...
Google Makes Public Their Open-Source PSP Security Protocol
Hearing "open-source", "PSP", and "security" all togeth...
Serious Security: Linux full-disk encryption bug fixed – patch now!
Lots of people “run Linux” without really knowing or ca...
3 years, 17 alphas, 2 betas, and over 7,500 commits later, OpenSSL version 3 is here
The OpenSSL team has released version 3.0 of ...
Improve The CrowdSec Multi-Server Installation With HTTPS Between Agents
Learn how to improve the security of the CrowdSec multi...
The Linux Kernel Module Programming Guide: Crypto
To handle cryptography, the Linux kernel has its own AP...
Google Chrome for Linux is getting DNS-over-HTTPS, but there's a catch
Google Chrome for Linux is getting DNS-over-HTTPS, but ...
Serious Security: OpenSSL fixes two high-severity crypto bugs
OpenSSL has patched two high-severity crypto bugs. Upgr...
SSH Attack Vector: Dormant & Forgotten Keys
SSH keys play a critical role in server and network sec...
Desktop Security
UbuntuDDE Remix 22.04 Brings the Deepin Desktop Environment to Ubuntu 22.04 LTS
The developers of the UbuntuDDE Remix distribution ...
Linux Mint 21 Release Brings Reviewer a Welcome Reunion
Is your favorite Linux desktop Cinnamon, MATE, or Xfce?...
Ubuntu Isn't Yet Onboard With GNOME's "Device Security" Screen
Coming with GNOME 43 is a "Device Security" panel ...
Cool Things You Can Do with the Linux Desktop that You Can't Do with MacOS or Windows
If you've ever wondered what you can do with a Linux de...
Businesses Should Dump Windows for the Linux Desktop
It makes perfect sense for enterprises as well as enthu...
KDE Kicks Off August With More Desktop Bug Fixes
KDE developers have started the month of August to a lo...
Secure Boot Disabled? GNOME Will Soon Warn You About it!
GNOME is planning to protect insecure hardware by notif...
Linux Mint 21 “Vanessa” Is Now Available for Download, This Is What’s New
Linux Mint 21 “Vanessa” has been in development for the...
The Story Behind Google’s In-House Desktop Linux
If you look around Google's Mountain View, CA offices, ...
Google: Here's How We Got to Rolling Desktop Linux Releases after Ubuntu to Debian Switch
A few years ago Google completed its switch from an Ubu...
Firewalls
OpenWrt 22.03 released with Firewall4, Now Supports Over 1,580 Embedded Devices
OpenWrt 22.03 open-source Linux operating system for ro...
The 10 Best Free Linux Firewall Tools
For those who are serious about their network security,...
IPFire Linux Firewall Distro Improves Its Intrusion Prevention System and Security
Peter Müller has announced the release and general...
Nasty Linux netfilter firewall security hole found
How embarrassing! It turns out there was a security hol...
4 Best Linux Open source Firewall for Cyber Security – 2022
Learn about some of the best-known open-source firewall...
IPFire Linux Firewall Now Supports exFAT, pe
IPFire 2.27 Core Update 161 has been released as a new ...
BPF-Based Linux Firewall "bpfilter" Shows Impressive Performance Potential
Generating much excitement back in 2018 was bpfilt...
IPFire Linux Firewall Distro Improves Its Intrusion Prevention System
Are you familiar with IPFire - the Linux firewall ...
Soldering spy chips inside firewalls is now a cheap hack, shows researcher
The tiny ATtiny85 chip doesn’t look like the next big c...
Government
New Ransomware Hits Windows, Linux Servers of Chile Govt Agency
Chile's national computer security and incident respons...
The US Military Wants to Understand the Most Important Software on Earth
Open-source code runs on every computer on the planet—a...
Red Hat gets RHEL 8.2 certified for high level US government security
Linux slinger Red Hat has achieved Common Criteria cert...
Google: Here's how our $10bn investment will boost US cybersecurity
Google has outlined its efforts to shape the US governm...
Critical Update: Do You Know What’s In Your Software?
In the wake of several major cybersecurity incidents - ...
New Republican bill latest in long line to force encryption backdoors
Here we go again - Senate Republicans push a new bill t...
Ethical hackers swarm Pentagon websites
Hackers are crawling all over the US Department of Defe...
Lindsey Graham’s new bill would end the internet as we know it
If Sen. Lindsey Graham gets his way, the federal govern...
A new senate bill would create a US data protection agency
Europe’s data protection laws are some of the strictest...
South Korea's government explores move from Windows to Linux desktop
In what may prove to be the biggest migration from Wind...
Hacks/Cracks
Ransomware Lockbit 3.0 Code Leaked in Github. Now Anyone Can Start Their Ransomware Business
Given that two people—or maybe the same person—leaked t...
Hackers Targeting WebLogic Servers and Docker APIs for Mining Cryptocurrencies
Malicious actors such as Kinsing are taking advantage o...
New Linux Malware Evades Detection Using Multi-Stage Deployment
A new stealthy Linux malware known as Shikitega ha...
241 npm and PyPI Packages Caught Dropping Linux Cryptominers
More than 200 malicious packages have been discovered i...
PyPI Package Installs Cryptominer on Linux Systems
A malicious PyPI package was used to install a Mon...
GwisinLocker A New Ransomware Encrypts Windows and Linux ESXi Servers
A new ransomware family has been discovered, which...
Windows, Linux, ESXi Systems Targeted by Novel Luna Ransomware
Windows, Linux, and ESXi systems could be encrypted wit...
New ‘Lightning Framework’ Linux Malware Installs Rootkits, Backdoors
A new and previously undetected malware dubbed 'Lightni...
Researchers Warn of New OrBit Linux Malware That Hijacks Execution Flow
Cybersecurity researchers have taken the wraps off a ne...
Cybersecurity Experts Warn of Emerging Threat of "Black Basta" Ransomware
The Black Basta ransomware-as-a-service (RaaS) syndicat...
IoT Security
Experts Spotted a New Stealthy Linux Malware Dubbed Shikitega
A new Linux malware dubbed Shikitega leverage...
Ubuntu Core 22 Wants to Power the Next Generation of IoT Devices
Canonical, the company behind top Linux distro&nbs...
Establishing a Root of Trust in Embedded Linux and IoT
With IoT, 5G and embedded devices becoming a larger par...
BusyBox flaws highlight need for consistent IoT updates
Security researchers have found and reported 14 vulnera...
Unsupported IoT Devices Are Cyber-Trouble Waiting To Happen
Imagine reading a headline in tomorrow’s news stating t...
Linux Foundation creates standards for voice technology with major partners
The Linux Foundation is teaming up with companies like ...
Putting an Ultra-Tiny Linux Board in a Phone Charger…Eventually
A project that aims to put an ultra-tiny Linux board in...
Network Security
10 Essential Linux Tools for Network and Security Pros
Picking just 10 Linux open source security tools isn’t ...
7 Key Benefits of Network Monitoring
Businesses rely on their networks to stay connected and...
10 essential Linux tools for network and security pros
Learn about 10 must-have Linux security tools for ...
Log4j Flaw Needs Immediate Remediation
After nearly two years of adopting major network and se...
But why that VPN? How WireGuard made it into Linux
Even the best of ideas can take their own sweet time ma...
The 8 Best Wireless Penetration Testing Tools for Linux
Protecting your wireless networks from infiltrators is ...
Should You Block Connections to Your Network From Foreign Countries?
This LinuxSecurity.com article featured on the frontpag...
Organizations/Events
Enterprise Encryption for Linux
It's no secret that the IT department has struggled wit...
Linux Luminaries Discuss Efforts to Bring Rust to the Kernel
Both Linus Torvalds' Open Source Summit keynote and Jon...
Open Source Security Gets a Boost with New Scorecard and Best Practices
There is no shortage of challenges when i...
OpenSSF Announces Project for Open Source Security
OpenSSF is excited to announce the Alpha-Omega Pro...
What to watch for as 'Hacker Summer Camp' gets underway in Las Vegas
A trio of cybersecurity conferences — BSidesLV, Black H...
A Marquee Week for Cybersecurity in Vegas
The cyber industry’s eyes are on Las Vegas this week,&n...
The Linux Foundation Announces Keynote Speakers for Open Source Summit Europe 2022
Global visionaries headline the premier open source eve...
Kali Linux team to stream free penetration testing course on Twitch
Offensive Security, the creators of Kali Linux, announc...
White House hosts open-source software security summit in light of expansive Log4j flaw
Tech giants and federal agencies meet at the White Hous...
Linux Foundation adds software supply chain security to LFX
To address the growing threat of software supply c...
Privacy
8 Online Best Dark Web Search Engines for Tor Browser (2022)
When it comes to the best dark web search engines, firs...
The 6 Best Private Encrypted Chat Apps for Linux Users
For those who want more control over their privacy whil...
Brave vs. Tor: Which Browser Offers More Security and Privacy?
Brave and Tor are two of the most secure web browsers y...
7 Reasons Why Ubuntu 22.04 LTS is the Most Secure Release Yet
Ubuntu 22.04 LTS is one of the best Ubuntu releases so ...
Tails 5.0 Linux users warned against using it "for sensitive information"
Tails developers have warned users to stop using the po...
7 Privacy-Focused Alternatives to Common Linux Software
Maintain privacy and keep your desktop safe by installi...
12 Simple Tools to Protect Your Privacy
Learn about 12 simple tools to guard your online privac...
We kick the tires on Qubes 4.1.0 and indeed, it's still a 'reasonably secure' OS
UEFI support adds attractions for the security-minded, ...
Tails vs. Linux Kodachi: Which Privacy Protection Distro Should You Choose?
When it comes to maintaining privacy on Linux, you have...
Linux Kodachi: Extreme Privacy Protection Out of the Box
Want a system that leaves no trace of what you did onli...
Security Projects
Wolfi is a Linux Un(distro) Built for Software Supply Chain Security
Wolfi is a Linux undistro that focuses on resolving sec...
LLVM 15.0.1 Released With Nearly Three Dozen Fixes
It's been two weeks since the release of LLVM 15.0...
Linus Torvalds: Rust will go into Linux 6.1
At the Kernel Maintainers Summit, the question wasn't, ...
The Next Deep Magic Linux Program to Change the World? Io_uring
A few years ago developers knew eBPF as a handy way to ...
8 Notable Open-Source Security Initiatives of 2022
Open-source security has been high on the agenda this y...
Following Retbleed, The Combined CPU Security Mitigation Impact For AMD Zen 2 / Ryzen 9 3950X
Following the July disclosure of the Retbleed ...
Linux 6.1 Default Kernel Config To Warn At Boot Of W+X Mappings
A change queued up as part of the "x86/mm" TIP changes ...
Secure Open Source Rewards Program Launched to Help Protect Critical Upstream Software
SOS.dev initiative will combat software supply chain at...
Google Wants to Make Linux Kernel Flaws Harder to Exploit
'Experimental mitigations' in a custom kernel could mak...
GitHub Dependabot Now Alerts Developers On Vulnerable GitHub Actions
Cloud-based code hosting platform GitHub has announced ...
Security Trends
Data Scientists Dial Back Use of Open Source Code Due to Security Worries
Data scientists, who often choose open source packages ...
Google Debugs, JFrog Jumps Code, Confidential Kubernetes, Meta-PyTorch
As the open-source model continues to prove its sustain...
When It Comes to Security, Don’t Overlook Your Linux Systems
Linux systems are a popular delivery mechanism for malw...
Coding Vulnerabilities, Linux Growth, FOSS Friction Cap Summer Highlights
As IT workers continue their daunting job of protecting...
Linux Devices 'Increasingly' Under Attack from Hackers, Warn Security Researchers
There's been a big rise in ransomware attacks targeting...
Don’t Leave Open Source Open to Vulnerabilities
Open-source software has become the foundation of the d...
It’s Time to Ditch 32-Bit Linux for 64-Bit
You may not want to continue using 32-bit Linux kernels...
Deprecated Linux Commands You Should Not Use Anymore (And Their Alternatives)
Believe it or not, you might be using a deprecated Linu...
Developer Survey Paints Software Landscape
Stack Overflow released the results of its annual ...
ShiftLeft Finds a 97% Reduction in Open Source Software Vulnerabilities
ShiftLeft has released some rare positive news on the A...
Security Vulnerabilities
Alert: 15-year-old Python tarfile Flaw Lurks in 'Over 350,000' Code Projects
Oh cool, a 5,500-day security hole
...
CISA Orders Agencies to Patch Vulnerability Used in Stuxnet Attacks
The U.S. Cybersecurity and Infrastructure Security Agen...
Google Chrome’s Latest Update Has a Security Fix You Should Install ASAP
Google Chrome users on Windows, Mac, and Linux need to ...
Ubuntu Linux 18.04 systemd Security Patch Breaks DNS in Microsoft Azure
Microsoft Azure customers running Canonical's Ubuntu 18...
8-Year-Old Linux Kernel Bug ‘No Pipe but as Nasty as Dirty Pipe’ Found
Researchers have revealed details about a long-standing...
New Linux Exploit ‘Dirty Cred’ Revealed at Black Hat
A new Linux kernel exploitation called Dirty Cred was r...
Ubuntu 22.04 LTS and 20.04 LTS: Canonical Releases Kernel Security Updates
British Linux distributor Canonical is releasing securi...
CISA Issues Warning on Active Exploitation of UnRAR Software for Linux Systems
The U.S. Cybersecurity and Infrastructure Security Agen...
LibreOffice Security Update Fixes Macro Execution Bypass and Potential Password Leaking
The developers of LibreOffice have released updates for...
Linux x86 32-bit Is Vulnerable To Retbleed But Don't Expect It To Get Fixed
While relevant Intel and AMD processors have been mitig...
Server Security
The Best Open Source Tools to Secure Your Linux Server
While Linux does have a variety of security features to...
381,000-plus Kubernetes API servers 'exposed to internet'
A large number of servers running the Kubernetes API ha...
Squid Vulnerability: Insecure forwarding of proxy_auth
Vendors have not issued updates yet for a vulnerability...
10 popular Open-Source Tools to Secure Your Linux Server in 2022
Learn about 10 great open-source tools to improve the s...
How to use this unique method of securing SSH
Learn about a unique and effective method of securing S...
The 10 Best Tools to Scan Your Linux Server for Malware and Security Flaws
Worried that your Linux server might be infected with m...
6 Must-Have Open-Source Tools to Secure Your Linux Server
Don't want to compromise on the security of your Linux ...
The Linux kernel may not be quite as secure as it should be
Kernel developers have gracefully accepted suggestions ...
UChecker tool scans Linux servers for outdated libraries
Security teams running Linux servers now have...
Vendors/Products
A Match Made in Heaven: systemd Comes to Windows Subsystem for Linux
Linux distros running on Windows in a WSL2 virtual mach...
Mozilla Firefox 105 Now Out with Performance Boosts for Windows and Linux
A few weeks ago, we saw the release of both Google...
Everything You Need to Know About BlackArch Linux
BlackArch is a well-known penetration testing distribut...
Debian GNU/Linux 11.5 “Bullseye” Released with 53 Security Updates and 58 Bug Fixes
The Debian Project has announced the general availabili...
Is Linux Lite the Simple, Fast, and Lightweight Linux Distro You Need?
Linux Lite is one of the many lightweight Linux distros...
Modern Intel Processors Will Now Run Better Under Linux
Intel has published a series of fixes for Linux aimed a...
Canonical Adds .NET to Ubuntu 22.04
Canonical is incorporating Microsoft's ASP.NET and .NET...
Kali Linux 2022.3 Adds 5 New Tools, Updates Linux Kernel, and More
Offensive Security has released Kali Linux 2022.3, the...
Windows Subsystem for Linux 0.65.1 is now live for all Insiders
Windows Subsystem for Linux (WSL) is a powerful piece o...
8 Top SBOM Tools to Consider
To really secure software, you need to know what's insi...
