Cloud Security
As Linux grows in popularity, cloud security threats are also growing
Linux is growing in popularity due to the impressive se...
Kubernetes hardening: Drilling down on the NSA/CISA guidance
NSA/CISA Kubernetes hardening guidance offers a solid f...
Are Your Containers Secure?
Container technology adoption has experienced a ra...
NSA, CISA release Kubernetes hardening guidance following Fancy Bear attacks
Hardening guidance from the NSA and CISA seeks to educa...
Predictions for open source and cloud over the months ahead
Both public cloud and Open Source adoption has grown ex...
Aqua Security: 50% of new Docker instances attacked within 56 minutes
Aqua Security's Cloud Native Threats report reveals tha...
Container Adoption not Slowed by Supply Chain Attacks
Widespread adoption of containerization ...
Ubuntu Pro launches for Google Cloud
Ubuntu Pro - the premium version of Ubuntu - is now ava...
Tigera’s Open Source Calico Selected to Address Kubernetes Network Policy in RKE 2 Clusters
Tigera, a leader in Kubernetes security and observabili...
SUSE Corrals Rancher Labs Into Latest Updates Placeholder Image
Rancher Labs headlined SUSE’s recent SUSECON Digital 20...
Cryptography
3 years, 17 alphas, 2 betas, and over 7,500 commits later, OpenSSL version 3 is here
The OpenSSL team has released version 3.0 of ...
Improve The CrowdSec Multi-Server Installation With HTTPS Between Agents
Learn how to improve the security of the CrowdSec multi...
The Linux Kernel Module Programming Guide: Crypto
To handle cryptography, the Linux kernel has its own AP...
Google Chrome for Linux is getting DNS-over-HTTPS, but there's a catch
Google Chrome for Linux is getting DNS-over-HTTPS, but ...
Serious Security: OpenSSL fixes two high-severity crypto bugs
OpenSSL has patched two high-severity crypto bugs. Upgr...
SSH Attack Vector: Dormant & Forgotten Keys
SSH keys play a critical role in server and network sec...
The What, Why & How of SSH Protocol
"Modern challenges require modern security approaches."...
The Case Against Full-Disk Encryption
Are you using full-disk encryption to protect your data...
Cartesi Launches 'Descartes' SDK Portal - Future of DApps
Cartesi has announced the launch of their Descartes SDK...
Desktop Security
KDE Plasma 5.22.4 Further Improves Plasma Wayland, Makes System Monitor Faster to Launch
KDE Plasma 5.22.4 is packed with many improvements to m...
GNOME 40.3 Released with Improvements to GNOME Software, Many Bug Fixes
GNOME 40.3 has been released as the third maintenance u...
Linux Mint will no longer let you procrastinate on important updates
The latest release of Linux Mint includes cha...
Linux Mint 20.2 beta ISOs undergo testing and are due soon
Linux Mint 20.2 "Uma" beta ISOs are undergo testing and...
Cinnamon 5.0 Desktop Environment Released with Support for Updating Spices, More
Cinnamon 5.0 has been released with many improveme...
Linux Mint 20.2 'Uma' to get beta release by mid-June
Linux Mint 20.2 'Uma' is set for a beta release by mid-...
KDE Frameworks 5.82 Released with More Than 200 Changes
The KDE Project has released KDE Frameworks 5.82 as the...
Firewalls
Call for Contributors with Knowledge of Linux Firewalls!
Greetings fellow Linux security enthusiasts,
Intereste...
IPFire Linux Firewall Distro Improves Its Intrusion Prevention System
Are you familiar with IPFire - the Linux firewall distr...
Soldering spy chips inside firewalls is now a cheap hack, shows researcher
The tiny ATtiny85 chip doesn’t look like the next big c...
Raluca Ada Popa: Her computer security method could make firewalls a thing of the past
Raluca Ada Popa found a fix for one of cybersecurity’s ...
DNS Firewalls Could Prevent Billions in Losses to Cybercrime
DNS protection could prevent approximately one-third of...
CUJO Smart Firewall vulnerabilities exposed home networks to critical attacks
Security researchers have uncovered a swathe of serious...
Government
Google: Here's how our $10bn investment will boost US cybersecurity
Google has outlined its efforts to shape the US governm...
Critical Update: Do You Know What’s In Your Software?
In the wake of several major cybersecurity incidents - ...
New Republican bill latest in long line to force encryption backdoors
Here we go again - Senate Republicans push a new bill t...
Ethical hackers swarm Pentagon websites
Hackers are crawling all over the US Department of Defe...
Lindsey Graham’s new bill would end the internet as we know it
If Sen. Lindsey Graham gets his way, the federal govern...
A new senate bill would create a US data protection agency
Europe’s data protection laws are some of the strictest...
South Korea's government explores move from Windows to Linux desktop
In what may prove to be the biggest migration from Wind...
How the Iowa caucus app went wrong and how open source could have helped
Opinion: It was incompetence, not politics, that led to...
Washington State Lawmakers Introduce Legislation Regulating Data Privacy, Facial Recognition
Following in the footsteps of their West Coast neighbor...
US military loves Linux
The US government is increasingly using open-source sof...
Hacks/Cracks
New Go malware Capoae targets WordPress installs, Linux systems
The new Capoae Go malware, which targets WordPress inst...
Hackers develop Linux port of Cobalt Strike for new attacks
Hackers have developed a Linux port of the Co...
HolesWarm Malware Exploits Unpatched Windows, Linux Servers
The HolesWarm botnet cryptominer has already compr...
Linux version of BlackMatter ransomware targets VMware ESXi servers
The BlackMatter gang has joined the ranks of ransomware...
Six Malicious Linux Shell Scripts Used to Evade Defenses and How to Stop Them
The Uptycs Threat Research team outlines how malicious ...
Hackers turning to 'exotic' languages for next-gen malware, report warns
Hackers are turning coding languages such as Go, Rust, ...
Microsoft Warns of LemonDuck Malware Targeting Windows and Linux Systems
The infamous cross-platform LemonDuck crypto-mining mal...
Linux version of HelloKitty ransomware targets VMware ESXi servers
The ransomware gang behind the notorious attack on CD ...
Evasive Techniques Used By Malicious Linux Shell Scripts
Learn about common defense evasion techniques used in m...
REvil's Ransomware Success Formula: Constant Innovation
Experts say that an affiliate-driven approach and regul...
IoT Security
Unsupported IoT Devices Are Cyber-Trouble Waiting To Happen
Imagine reading a headline in tomorrow’s news stating t...
Linux Foundation creates standards for voice technology with major partners
The Linux Foundation is teaming up with companies like ...
Putting an Ultra-Tiny Linux Board in a Phone Charger…Eventually
A project that aims to put an ultra-tiny Linux board in...
Network Security
The 8 Best Wireless Penetration Testing Tools for Linux
Protecting your wireless networks from infiltrators is ...
Should You Block Connections to Your Network From Foreign Countries?
This LinuxSecurity.com article featured on the frontpag...
What Is Penetration Testing and How Does It Improve Network Security?
The best way to improve and guarantee your network’s se...
IPFire Linux Firewall Distro Now Supports WPA3 to Make Wi-Fi Safe Again
The IPFire 2.25 Core Update 153 release brings WPA...
Windows Subsystem for Linux 2 bypasses the Windows 10 Firewall
The Windows Subsystem for Linux 2 will bypass the Windo...
WireGuard VPN is a step closer to mainstream adoption
Linux network stack maintainerDavid Millerhascommittedt...
The VPN is dying, long live zero trust
The traditional VPN is being replaced by a smarter, saf...
Research: 5G Networks Still Vulnerable to Location Tracking, Downgrading Attacks
A group of researchers have found 11 flaws in 5G protoc...
7 Ways VPNs Can Turn from Ally to Threat
VPNs are critical pieces of the security infrastructure...
Organizations/Events
SPDX becomes internationally recognized standard
In use for a decade as the de facto standard for commun...
Happy birthday, Linux: From a bedroom project to billions of devices in 30 years
In celebration of Linux's 30th birthday, Greg Kroah-Har...
Happy 30th Birthday, Linux!
Marius Nestor celebrates Linux’s 30th birthday with a g...
How Linux has changed the business landscape: It's more than you think
On the year of Linux's 30th anniversary, Linux security...
My life with Linux: A retrospective
In honor of Linux's 30th birthday, Linux security exper...
Hands On: DEF CON 29 Badge Embraces the New Normal
DEF CON 29 will be an event to remember, with this...
Black Hat USA 2021 Cybersecurity Conference Live Updates
The Black Hat USA 2021 conference, under way ...
Black Hat USA 2021 and DEF CON 29: What to expect from the security events
BlackHat USA 2021 is in full swing and DEF CON 29 is ra...
Red Hat Brings Red Hat Universal Base Image to Docker Hub
Red Hat has brought its Universal Base Image to Docker ...
Linux's Technical Advisory Board reports on the UMN 'Hypocrite Commits' patches
The Linux Foundation Technical Advisory Board reports o...
Privacy
Privacy-focused Linux Distributions to Secure Your Online Presence in 2021
Are you concerned by the rise in Linux malware? Worried...
13 Important Privacy and Security Settings in Ubuntu Linux
Learn 13 Linux security best practices you can follow t...
Ring Changed How Police Request Door Camera Footage: What it Means and Doesn’t Mean
Amazon Ring has announced that it will change...
Everything You Need to Know About Using Tor Browser on Linux
Want to protect your privacy online? Here's how to get ...
Amazon devices will soon automatically share your Internet with neighbors
Amazon's experiment wireless mesh networking has turned...
Most loved programming language Rust sparks privacy concerns
Rust developers have repeatedly raised concerned about ...
Cheap baby monitors and security cameras – widespread flaw allows remote viewing
New research highlights that cheap baby monitor and sec...
Microsoft Azure and Canonical Ubuntu Linux have a user privacy problem
Security advisor Luca Bongiorni spun up an Ubuntu ...
The Home Directory Will be Private in Ubuntu 21.04, What Does it Mean?
Until now, users on the same Ubuntu system could access...
Tor Browser 10.0.5
Protect your privacy and defend yourself against networ...
Security Projects
Linux Kernel 5.13 Reaches End of Life, Users Urged to Upgrade to Linux Kernel 5.14
A friendly reminder for Linux kernel 5.13 users: the Li...
Linux boosts Microsoft NTFS support as Linus Torvalds complains about GitHub merges
Better support for Microsoft's NTFS file-system is comi...
OpenWrt 21.02 released with WPA3, HTTPS, TLS enabled by default
OpenWrt 21.02 has been released with exciting new featu...
Linux 5.14 is here, packing boosted security protection
No rest for the wicked! Days after the Linux ...
Get paid to improve Linux and open-source security
The Linux Foundation and allies will pay developers to ...
Linux Foundation's InterUSS Adopted by Swiss Federal Office of Civil Aviation to Meet European U-Space Requirements for Unmanned Aircraft
The Linux Foundation's InterUSS network remote identifi...
Linux Kernel’s Stable Branch Maintainer Greg Kroah-Hartman on Security and the Development Process
The Linux kernel's stable branch maintainer Greg K...
Qualys Collaborates with Red Hat to Enhance Security for Red Hat Enterprise Linux CoreOS and Red Hat OpenShift
Qualys is the first solution to scan Red Hat Enterprise...
Linux in space: CloudLinux powers Atlas V rocket
CloudLinux's TuxCare services are now providing au...
Let the Linux kernel Rust
Rust is creeping into the Linux kernel - which could me...
Security Trends
Lennart: Linux Comes Up Short Around Disk Encryption, Authenticated Boot Security
Most Linux distros are currently coming up short from o...
How To Make Email Safe for Business
In this interview with Help Net Security, Dave Wreski, ...
Linux-based Malware Requires Linux Focused Cybersecurity Strategy
The rise in Linux malware highlights the importance of ...
IT Heads Wary Big Tech Will Taint Trust in Open Source: Report
Open Source is becoming increasingly popular among busi...
Vulnerability Detection and Patching: A Survey Of The Enterprise Environment
Detecting vulnerabilities and managing the associated p...
Live Patching Requires Reproducible Builds – and Containers Are the Answer
Live patching can improve security and minimize downtim...
Stale Open Source Code Rampant in Commercial Software: Report
A new report shows that stale open-source code is rampa...
The Role of Ethics in Cybersecurity Studies
University of Minnesota researchers' recent "experiment...
An Abridged Guide to the Enterprise Linux Landscape
From robust security to high levels of flexibility, Lin...
Minified Linux Offerings Boost Containers and Edge Processing
Edge locations are often unstaffed, or staffed by techn...
Security Vulnerabilities
Apache OpenOffice can be hijacked by malicious documents, fix still in beta
Apache OpenOffice (AOO) is currently vulnerable to a re...
OMIGOD: Azure users running Linux VMs need to update now
Azure users running Linux VMs may not be aware the...
HAProxy Found Vulnerable to Critical HTTP Request Smuggling Attack
A critical security vulnerability (CVE-2021-40346) ...
Canonical Pushes New Ubuntu Kernel Updates to All Supported Releases
Canonical has published Linux kernel updates for all of...
New Windows and Linux Flaws Give Attackers Highest System Privileges
Recently discovered flaws impacting Linux and Windows u...
Patch your Linux, hackers are actively exploiting the “Dirty COW” flaw
Hackers are exploiting a dangerous privilege escalation...
Why Linux’s biggest strength is also its biggest weakness
Learn about the positives and negatives of Linux's...
Major Linux RPM problem uncovered
Red Hat has used RPM for software package distribution ...
Ubuntu 21.04 Users Get Major Kernel Security Update, 17 Vulnerabilities Patched
Canonical has released a new major Linux kernel securit...
Unpatched Flaw in Linux Pling Store Apps Could Lead to Supply-Chain Attacks
Cybersecurity researchers have disclosed a critical unp...
Server Security
The 10 Best Tools to Scan Your Linux Server for Malware and Security Flaws
Worried that your Linux server might be infected with m...
6 Must-Have Open-Source Tools to Secure Your Linux Server
Don't want to compromise on the security of your Linux ...
The Linux kernel may not be quite as secure as it should be
Kernel developers have gracefully accepted suggestions ...
UChecker tool scans Linux servers for outdated libraries
Security teams running Linux servers now have...
5 Best free to use Linux Server distributions for 2021
Learn about the selection of excellent - and free! - se...
Docker malware is now common, so devs need to take Docker security seriously
Three years after the first malware attacks targeting D...
SELinux changes for KVM-separated (Kata) containers
Learn about SELinux types that improve container securi...
New Kaiji malware targets IoT devices via SSH brute-force attacks
Another dangerous strain of malware targeting Linux ser...
Unix Test Lab Guide Project
Thanks to my buddy Duane Dunston, MS, Assistant Profe...
Vendors/Products
Canonical gives administrators the chance to drag their feet a bit more on Ubuntu upgrades
There's good news for admins looking nervously at their...
Kali Linux 2021.3 released with new pentest tools, improvements
Offensive Security has released Kali Linux 2021.3 with ...
CloudLinux Adds TuxCare Support for CentOS 8 Through 2025
Extended CloudLinux TuxCare support will give Cent...
CloudLinux offers CentOS 8 users a support lifeline
Red Hat won't support CentOS 8 past the end of the year...
Ubuntu Linux gets certified for secure and regulated workloads
Canonical has announced that Ubuntu is set to drive hig...
Case Study: Payment Processor Streamlines Threat Detection and Response
Uptycs - a leader in cloud-native security analytics - ...
Say hi to Microsoft's own Linux: CBL-Mariner
Microsoft now has its own lightweight and secure Linux ...
Mozilla Firefox 90 Is Now Available for Download, Removes Built-In FTP Support
Mozilla Firefox 90 is now available to Linux users for ...
Tails 4.20 Anonymous OS Released with Brand-New Tor Connection Assistant
Tails, the amnesic incognito live system known for the ...
Deepin Linux 20.2.2 Introduces a Brand-New App Store, Secure Boot Support
Deepin Linux 20.2.2 has been released featuring the eye...
