Operation DreamJob – New Linux Malware Linked With 3CX Supply-Chain Attack
Security researchers have recently discovered that Linux users targeted with malware in the new “Operation DreamJob” Lazarus campaign for the first time.
SpaceX: We've launched 32,000 Linux computers into space for Starlink internet
Assuming the second-generation satellites carry the same number of Linux computers, it would mean SpaceX plans to send at least two million Linux computers into space in the next few years.
Cloud Security
A Holistic Approach to Closing the Container Security Gap
Among cloud developers, Kubernetes is now a widely used...
Threat Actors Use AWS SSM Agent as a Remote Access Trojan
Threat actors have been observed using Amazon Web Servi...
Cilium 1.14 Expands Networking Beyond Kubernetes, Offers Higher Speeds
Cilium, an open-source networking, security and observa...
Python-Based PyLoose Fileless Attack Targets Cloud Workloads for Cryptocurrency Mining
A new fileless attack dubbed PyLoose has been...
What eBPF Means for Container Threat Detection
With eBPF monitoring container activity from the kernel...
14 Kubernetes and Cloud Security Challenges and How to Solve Them
A recent report entitled Cloud Native and Kubernetes Se...
Kubernetes vs. Docker: Exploring the Synergy in Containerization
Learn about the advantages of using Kubernetes and Dock...
Kubernetes Architecture and its Security
Kubernetes is an open-source container orchestrati...
Amazon Linux 2023, a Cloud-Optimized Linux Distro, Is Now Available
Earlier this week, Amazon announced the availabili...
IBM's mainframe operating system upgrade will embrace AI
IBM said this week it will soon roll out an AI-infused,...
Cryptography
Cryptsetup Lands Support For OPAL Self Encrypting Drives
Linux 6.4 or newer paired with the latest cryptsetup de...
Monti Ransomware’s Linux Variant Attacks the Financial & Healthcare Industries
The Monti ransomware was found in June 2022 that attrac...
Alarm Raised Over Mozilla VPN: Wonky Authorization Check Lets Users Cause Havoc
A security engineer at Linux distro maker SUSE has publ...
Linux Version of Abyss Locker Ransomware Targets VMware ESXi Servers
The Abyss Locker operation is the latest to develop a L...
There's Now a Linux Version of This Dangerous VMware Ransomware
A ransomware operation known as Akira has been seen enc...
Chinese Hackers Use DNS-over-HTTPS for Linux Malware Communication
The Chinese threat group 'ChamelGang' infects Linux dev...
Firefox 114 Updates Security and Improves DNS over HTTPS Accessibility
Firefox 114.0 and Firefox 102.12.0 ESR are the June 202...
New Linux Ransomware Strain BlackSuit Shows Striking Similarities to Royal
An analysis of the Linux variant of a new ransomware st...
New 'MichaelKors' Ransomware-as-a-Service Targeting Linux and VMware ESXi Systems
A new ransomware-as-service (RaaS) operation called Mic...
Cow-encryptor Turns Your Secret Documents Into a Series of Moos
Secure your documents, notes, and plaintext passwords o...
Desktop Security
Ubuntu Desktop "Charting A Course For The Future" With Ubuntu 24.04 LTS Next Year
Oliver Smith at Canonical who serves as the Product Man...
If You're Looking to Up Your Desktop Computer Security, Linux Might Be Your Best Bet
With the threat of security breaches continually on the...
Ubuntu Core as an Immutable Linux Desktop Base
Canonical began the development of Ubuntu Core in 2014,...
Budgie-flavored Fedora Onyx To Be a New Immutable Fedora Variant
Fedora Onyx is now approved to be an official Fedora va...
The Kubuntu Focus Ir14 Is an Upcoming Linux Laptop Worthy of Powering the KDE Plasma Desktop
The latest Kabuntu laptop marries security-first hardwa...
MidnightBSD 3.0.1 Released With Security Fixes, rc.d Scripts Cleanup
Building off last month's release of MidnightBSD 3...
Latest Release of EuroLinux Desktop – What Will We Find in Version 9.1?
EuroLinux Desktop is a modern operating system that com...
Linux Mint 21.2 Promises Better Support for Flatpak Apps, Faster File Management
The Linux Mint team is also working on strengthening th...
Fedora 10: The GNU/Linux Desktop Steps Forward
Any release of a GNU/Linux distribution marks a milesto...
X.Org Server Hit By New Local Privilege Escalation Vulnerability
The X.Org Server, a commonly used component to the...
Firewalls
The Open Source Firewall – IPFire 2.27 – Core Update 173 Released: What’s New?
Get ready to experience the best of IPFire 2.27 – Core ...
IPFire Hardened Linux Firewall Distro Is Now Powered by Linux Kernel 6.1 LTS
IPFire 2.27 Core Update 173 is out to introduce support...
Chinese Hackers Exploited Recent Fortinet Flaw as 0-Day to Drop Malware
A suspected China-nexus threat actor exploited a recent...
Firewalld 1.3 Released With Easier Firewall Management For More Services
Firewalld 1.3 is out as the newest version of this open...
WAFs of Several Major Vendors Bypassed With Generic Attack Method
Researchers at industrial and IoT cybersecurity firm Cl...
The 10 Best Free Linux Firewall Tools
For those who are serious about their network security,...
OpenWrt 22.03 released with Firewall4, Now Supports Over 1,580 Embedded Devices
OpenWrt 22.03 open-source Linux operating system for ro...
IPFire Linux Firewall Distro Improves Its Intrusion Prevention System and Security
Peter Müller has announced the release and general...
Nasty Linux netfilter firewall security hole found
How embarrassing! It turns out there was a security hol...
4 Best Linux Open source Firewall for Cyber Security – 2022
Learn about some of the best-known open-source firewall...
Government
APT36 Using Customized Malware to Attack Indian Government Linux and Windows Servers
APT36 is a highly sophisticated APT (Advanced Persisten...
SELinux In Linux 6.6 Removes References To Its Origins At The US NSA
Security Enhanced Linux (SELinux) has been part of the ...
Monti Ransomware Deploying New Linux Encryptor
A ransomware campaign by the recently emerged Monti ran...
US Government Launches Cyber Contest to Harness AI for National Security
The White House launched a multimillion-dollar cyber co...
US Government Extends Software Security Deadline Because Vendors Aren't Ready
The Biden Administration has extended the deadline for ...
India Bans Open Source Messaging Apps for Security Reasons. FOSS Community Says Good Luck
India's government has reportedly banned 14 messaging a...
The Cyber Resilience Act Threatens Open Source
Society and governments are struggling to adapt to a wo...
Pakistan-Based Hackers are Trying to Hack the Indian Government
A technical report published by Uptycs security earlier...
Linux Foundation Janssen Project Earns Digital Public Good Status
The Linux Foundation Janssen Project, a low-code d...
OpenSSF Aimed to Stem Open Source Security Problems in 2022
In 2022, the Open Source Software Foundation (OpenSSF) ...
Hacks/Cracks
P2PInfect Botnet Activity Surges 600x with Stealthier Malware Variants
The P2PInfect botnet worm is going through a period of ...
Chinese Hackers Have Unleashed a Never-Before-Seen Linux Backdoor
Researchers have discovered a never-before-seen backdoo...
Free Download Manager Backdoored to Serve Linux Malware for +3 Years
Researchers discovered a free download manager site tha...
Linux Malware! Read This If You Use Free Download Manager
We do not often talk about Linux malware because it is ...
Hackers Using BlueShell Malware to Attack Windows, Linux, and Mac Systems
The usage of Blueshell malware spikes up by various thr...
North Korean Malware Targets Windows, MacOS and Linux
Cybersecurity researchers at ReversingLabs claim that a...
A Deep Dive into CL0P Ransomware
"Variants of CL0p were initially only found on Windows ...
New SkidMap Malware Attacking Wide Range of Linux Distributions
According to recent reports, there have been instances ...
Reptile Rootkit: Advanced Linux Malware Targeting South Korean Systems
Threat actors are using an open-source rootkit called&n...
Hackers Deploy "SUBMARINE" Backdoor in Barracuda Email Security Gateway Attacks
The U.S. Cybersecurity and Infrastructure Security Agen...
IoT Security
New Cryptocurrency Mining Campaign Targets Linux Systems and IoT Devices
Internet-facing Linux systems and Internet of Things (I...
Top NAS Devices Are Being Targeted by This Dangerous Malware
IoT cybersecurity company Sternum has identified a secu...
Zymbit Secure Module Features Raspberry Pi CM4
The new Secure Compute Module (SCM) Pro is an...
New Mirai Botnet Variant 'V3G4' Exploiting 13 Flaws to Target Linux and IoT Devices
A new variant of the notorious Mirai botnet has been fo...
New Mirai Malware Variant Infects Linux Devices to Build DDoS Botnet
A new Mirai botnet variant tracked as ‘V3G4’ targets 13...
Microsoft Applies Coat of Rust to Azure Sphere IoT Platform
The hope? To grease the security skids for internet-con...
Zerobot Malware Now Shooting for Apache Systems
The Zerobot botnet, first detected earlier this month, ...
New DDoS Botnet Malware Infecting Windows, Linux, and IoT Devices
A cross-platform botnet, ‘MCCrash’ that starts out from...
IoT/Edge Dev Survey Shows AI, Container and Linux Popularity
For the eighth year, the Eclipse Foundation has surveye...
New Go-Based Botnet Zerobot Exploits Dozens of Flaws
Researchers discovered a new Go-based botnet called&nbs...
Network Security
TCP Authentication Option "TCP-AO" Support Nears For The Linux Kernel
One of the new Linux networking features we've been loo...
Kali Linux 2023.3 Released with 9 New Tools, Internal Changes
Kali Linux 2023.3, the third version of 2023, is now av...
The 4 Best Network Scanning and Enumeration Tools
The scanning and enumeration phase of penetration tests...
Kali Linux 2023.2 Released with 13 New Tools, Pre-Built HyperV Image
Kali Linux 2023.2, the second version of 2023, is now a...
The Secure Programmable Router Project Puts Your Network Back Under Your Control with a Raspberry Pi
Designed with an eye on security and privacy, SPR aims ...
Parrot OS 5.3 Ethical Hacking Distro Is Here with Linux Kernel 6.1 LTS
Parrot Security announced today the release and gen...
Best Linux Distributions for Hacking and Penetration Testing
Looking for the best Linux distro to learn hacking...
Best Forensic and Pentesting Linux Distros of 2023
The best forensic and pentesting Linux distros make it ...
Ethical Hacking Distro BlackArch Linux Gets New ISO Release with over 2800 Tools
Arch Linux-based penetration testing and ethical hackin...
Researchers Warn of Wi-Fi Security Flaw Affecting iOS, Android, Linux
Apple’s decision to support MAC Address Randomization a...
Organizations/Events
Long-term Support for Linux Kernel to Be Cut as Maintenance Remains Under Strain
The Open Source Summit provides an update on what's new...
30 Years of Stability, Security, and Freedom: Celebrating Debian’s Birthday
Happy 30th birthday, Debian! Inspiring generations, you...
Say Hello to Downfall, Another Data-Leaking Security Hole in Several Years of Intel Chips
[BLACK HAT] Googlers have lately found not one but...
World’s largest open source event, Red Hat's Summit 2023 Delivers Big for its Customers and Partners
As part of the company's recent Summit 2023, Red Hat ha...
The Moment for AI
Red Hat President and Chief Executive Officer, Matt Hic...
AWS Open Sources Security Tools
AWS is open sourcing its Cedar policy language and auth...
Microsoft Aims For Greater Script Execution Control On Linux
This week alongside several other Linux Foundation even...
Embedded Open Source Summit 2023 Schedule – Zephyr OS, Security, IoT, Embedded Linux, and More
The Linux Foundation has just announced the full schedu...
Judge Rules Online Archive's Book Service Violated Copyright
A federal judge has sided with four publishers who sued...
How OpenSSF Aims to Make Log4j-Like Incidents Rare
More critical flaws similar to Log4Shell found in open ...
Privacy
Librem 11: Purism Unveils a Privacy-Focused Linux Tablet
An expensive Linux-powered tablet with a focus on secur...
Mozilla VPN: Security Flaw Opens Door to Multiple Integrity Breaches
A cybersecurity researcher from SUSE, a Linux distribut...
The Illusion of Privacy: Why using Linux and a Degoogled Phone May Not Completely Safeguard Your Data
In an era where concerns about online privacy are at an...
Nitrux 2.8.1 Linux Distribution Unleashes Supercharged Security and Privacy Powers
Nitrux 2.8.1, codenamed "sc" for "safer computing," has...
Firefox 114 Beta Revamps DNS over HTTPS Feature, Adds Cookie Banner Reduction
Mozilla never stops and work already started on the nex...
Tails 5.12 Anonymous OS Launches with New Persistent Storage Features, Bug Fixes
This release also ships with the latest Tor Browser 12....
Firefox vs Tor Browser: Which One Offers Better Privacy and Security
Firefox and Tor Browser are both computer&nbs...
The Tor Project’s New Privacy-Focused Browser Doesn’t Use the Tor Network
The Tor Project, the organization behind the anonymous...
New Privacy-Focused Browser Aims to Protect Your Data Online
The Tor Project and Mullvad VPN, two org...
Tails 5.11 Amnesic Incognito Live System Switches to ZRam and Linux Kernel 6.1 LTS
Tails 5.11 amnesic incognito live system has been relea...
Security Projects
RISC-V With Linux 6.6 Offers Better Kernel Security With KASLR
More RISC-V architecture updates were merged this weeke...
Expanded Platform Support For AMD Dynamic Boost Control Being Worked On For Linux
Since early this year AMD has been working on Linu...
What is LEMP Stack?
In the world of web development, terms like MEAN, MERN,...
AMD Publishes SEV Firmware As Open-Source
While I have been eagerly following the AMD openSI...
Updated AMD Family 19h Microcode Published Following "Inception"
Following yesterday's disclosure of the AMD "Incep...
Secure Your Software Supply Chain Through Backstage
An internal developer portal can help you consolidate a...
Microsoft's CBL-Mariner 2.0 Linux Distribution Adds Clippy
Microsoft has released an updated version of its CBL-Ma...
Linux Creator Expresses “Frustration” Towards AMD’s fTPM Bugs, Calls To Disable Feature
AMD's fTPM issues are well-known in the industry, often...
Linux kCFI/FineIBT Weaknesses Addressed By Rewriting Some Assembly In C
Ahead of the Linux 6.5-rc2 release tomorrow there was a...
Linux Kernel 6.3 Reaches End of Life, Users Urged to Upgrade to Linux 6.4
The Linux 6.3 kernel series is now marked as EOL on the...
Security Trends
When Betting on Linux Security, Look at the Big Picture
Recently, an article crossed my path that made me smile...
Linux Malware: What To Know About the Malware Threat
Although Linux offers security advantages, users must r...
The Future Of Open-Source Enterprise Linux And Community Collaboration
"Open-source software's security and reliability aspect...
Linux Ransomware Poses Significant Threat to Critical Infrastructure
Organizations running Linux distributions need to prepa...
Mission Linux: How the Open Source Software Is Now a Lucrative Target for Hackers
With the growth of Linux in cloud environments, critica...
Has Linux Lost Its Security Edge?
The OS enjoys a reputation for enhanced security. That ...
AI ‘Hallucinations’ Can Become an Enterprise Security Nightmare
Researchers at an Israeli security firm on Tuesday reve...
Open Saucers Have Job Security
While tech companies are laying off staff claiming th...
It’s Not Just Windows that Gets Malware
Seemingly immune for so long, here's a reminder that Ma...
Surveying Software Supply Chain Security
Chainguard, the co-creator of Sigstore, has conducted a...
Security Vulnerabilities
Critical OpenDMARC DoS Bug Fixed
A critical vulnerability was found in the OpenDMARC ope...
Critical BusyBox Stack Overflow Vuln Fixed
A critical stack overflow vulnerability has been discov...
Remotely Exploitable Poppler DoS Bugs Fixed - Update Now!
Two remotely exploitable security flaws involving incor...
Mitigations for Critical c-ares DoS, Code Execution Bug Released
A critical buffer overflow vulnerability has been found...
Critical Zero-Day Heap Buffer Overflow Vuln Fixed in Firefox, Thunderbird
A critical zero-day vulnerability that has been exploit...
Multiple Severe, Remotely Exploitable Chromium Vulns Fixed
Multiple severe, remotely exploitable security vulnerab...
Critical Memory Safety Bug, Other Severe Vulns Fixed in Thunderbird
A critical memory safety bug has been discovered in Thu...
Critical PHP Info Disclosure, Code Execution Bugs Fixed
Two major security vulnerabilities were recently discov...
Mitigations for Severe JOSE for C/C++ DoS, Info Disclosure Bug Released
It was discovered that JOSE for C/C++ AES GCM decryptio...
Remotely Exploitable ClamAV DoS Bug Discovered & Fixed
It was discovered that ClamAV incorrectly handled parsi...
Server Security
Harden Ubuntu Server to Secure Your Container and Other Deployments
You'll be surprised at how easy it is to harden the Ubu...
P2P Worm Attacking 307,000 Redis Instances on Linux and Windows Systems
P2PInfect is a new P2P worm that is actively targeting ...
Hackers Infect Linux SSH Servers with Tsunami Botnet Malware
An unknown threat actor is brute-forcing Linux SSH serv...
The 7 Best SSH Clients for Linux
To establish an SSH connection between your Linux PC an...
10 Best Linux Vulnerability Scanners to Scan Linux Servers – 2023
Are you searching for Linux vulnerability scanners that...
Winnti APT Hackers Attack Linux Servers With New Malware ‘Mélofée’
The discovery of a novel malware piece targeting Linux ...
Mélofée: The Latest Malware Targeting Linux Servers
ExaTrack, a France-based cybersecurity firm, has discov...
What Is the Difference between vsftpd and ProFTPd?
FTP is a standard protocol that is used to transfer fil...
New ShellBot DDoS Malware Variants Targeting Poorly Managed Linux Servers
Poorly managed Linux SSH servers are being targeted as ...
5 Best free to use Linux Server distributions for 2023
Learn about the selection of excellent - and free! - se...
Vendors/Products
Ubuntu 23.04 & 22.04.3 Installs Haven't Been Following Their Own Security Best Practices
It turns out that Ubuntu Linux installations of Ubuntu ...
The Great CentOS Linux Migration: How We Got Here and What’s Next
The recent news regarding Red Hat’s decision to li...
What Is Kali Linux? Everything To Know About the Popular Linux Distro
One of the most-used Linux distros is Kali Linux, which...
Intel Core CPUs See a Performance Drop of up to 40% with the Downfall Security Patch
Downfall is the latest speculative execution vulne...
‘Worm-like’ Botnet Malware Targeting Popular Redis Storage Tool
An unknown group of hackers is using a novel strain of ...
Red Hat adds four years of extended support for RHEL 7
An additional three years are also added to RHEL 8 and ...
SQLite 3.42 Released With "Secure Delete" Command
SQLite 3.42 is now available as the newest update to th...
Ubuntu 23.10 Improving PPA Management For Enhanced Security & Reliability
One of the great longtime features of Ubuntu Linux has ...
Intel Issues New CPU Microcode Going Back To Gen8 For New, Undisclosed Security Updates
Well, this is a bit strange... Intel just published Fri...
Following exFAT Improvements Last Year, Microsoft Is Adding XFS Root File System to Mariner
In December last year, Microsoft's exFAT on Linux recei...
