Secure Your Server with Linux Security Expert Insights

Discover Server Security News

Mallox Ransomware: A Rising Threat to Linux Servers

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Security threats continue developing rapidly, with attackers finding new vulnerabilities daily. Recent findings from researchers at Uptycs indicate a shift in ransomware attacks targeting Linux servers, possibly due to their increasing prevalence in critical infrastructure and enterprise operations, making them attractive targets for ransomware groups.

Brittany Day
Jul 04, 2024

Magnet Goblin Hackers Exploit One-Day Flaws to Deploy Custom Linux Malware

Financially motivated hacking groups are increasingly exploiting newly disclosed vulnerabilities to deploy custom malware on public-facing servers. The threat actors are known as Magnet Goblin, and they have been quick to leverage one-day flaws, vulnerabilities for which a patch has been released but not yet applied by the target, to carry out their attacks.

Brittany Day
Mar 11, 2024

New Bifrost Malware Evades Detection, Threatens Linux Server Security

A new variant of Bifrost, a remote access Trojan (RAT), has been observed attacking Linux servers. The new variant, dubbed Bifrose, employs a deceptive domain name to evade detection.

Dave Wreski
Mar 02, 2024

Cryptocurrency Mining Migo Malware Attacks Linux Redis Servers

A new malware dubbed “Migo” that is targeting Linux Redis servers to mine cryptocurrency via a cryptojacking attack has been discovered. This campaign employs many Redis system-weakening commands to potentially disable data store security features that could hinder their initial attempts at access.

Anthony Pell
Feb 21, 2024

Mirai-based NoaBot Cryptomining Botnet Threatens Linux Servers

Over the last year, a new botnet slowly grew by brute-forcing SSH passwords and installing cryptomining malware onto Linux servers. The main client of the botnet is based on an old Mirai virus whose source code was available for many years. However, researchers have seen that the same group has also used the more recent P2PInfect malware, which exploits Redis instances.

LinuxSecurity.com Team
Jan 10, 2024

Warning: Poorly Secured Linux SSH Servers Under Attack for Cryptocurrency Mining

It's no secret that cryptocurrencies are a valuable target for hackers. Bitcoin, Ethereum, and Litecoin are all coins worth stealing, and hackers have been working hard to get their hands on them.

LinuxSecurity.com Team
Dec 27, 2023

Apache ActiveMQ Vulnerability Exploited by Kinsing to Attack Linux Servers

Apache ActiveMQ is a messaging server that many organizations use across the world. The software has been actively developed since 2003, and it has a large user base.

LinuxSecurity.com Team
Dec 12, 2023

Krasue RAT Malware Hides on Linux Servers Using Embedded Rootkits

The Krasue Rat malware is a new threat to Linux servers that has been discovered by security researchers. The malware installs itself on the server, and then hides in the form of a rootkit, allowing it to hide from security software.

LinuxSecurity.com Team
Dec 07, 2023

Ubuntu Server Security Best Practices

Ubuntu Server is a highly sought-after, open-source operating system that serves as the backbone of many infrastructure setups across the globe. The efficiency and user-friendly nature of Ubuntu Server make it a go-to choice for organizations.

LinuxSecurity.com Team
Oct 15, 2023

Harden Ubuntu Server to Secure Your Container and Other Deployments

You'll be surprised at how easy it is to harden the Ubuntu Server and ensure your deployments' foundation is as secure as possible.

LinuxSecurity.com Team
Sep 17, 2023

P2P Worm Attacking 307,000 Redis Instances on Linux and Windows Systems

P2PInfect is a new P2P worm that is actively targeting the Redis servers on Linux and Windows OS, making it highly scalable and powerful compared to others.

LinuxSecurity.com Team
Jul 26, 2023

Hackers Infect Linux SSH Servers with Tsunami Botnet Malware

An unknown threat actor is brute-forcing Linux SSH servers to install a wide range of malware, including the Tsunami DDoS (distributed denial of service) bot, ShellBot, log cleaners, privilege escalation tools, and an XMRig (Monero) coin miner.

LinuxSecurity.com Team
Jun 26, 2023

The 7 Best SSH Clients for Linux

To establish an SSH connection between your Linux PC and a remote server, you need to have an SSH client installed. Here are some of the best options.

LinuxSecurity.com Team
Jun 19, 2023

10 Best Linux Vulnerability Scanners to Scan Linux Servers – 2023

Are you searching for Linux vulnerability scanners that can recognize, characterize, and categorize to scan Linux servers? If so, this article will provide details on the most comprehensive Linux vulnerability scanners that can be used to scan Linux servers for malware and vulnerabilities.

LinuxSecurity.com Team
May 08, 2023

Winnti APT Hackers Attack Linux Servers With New Malware ‘Mélofée’

The discovery of a novel malware piece targeting Linux servers has been attributed to an unknown Chinese state-sponsored hacking group.

LinuxSecurity.com Team
Apr 05, 2023

Mélofée: The Latest Malware Targeting Linux Servers

ExaTrack, a France-based cybersecurity firm, has discovered a “novel” malware, which they have named Mélofée. According to the researchers, this malware is specifically targeting Linux servers and is believed to be operated by an unidentified Chinese state-backed APT group.

LinuxSecurity.com Team
Mar 31, 2023

What Is the Difference between vsftpd and ProFTPd?

FTP is a standard protocol that is used to transfer files widely, and FTP servers like Vsftpd and ProFTPd provide a way to use that protocol and access plus transfer files stored on a remote server. Here we quickly learn the difference between Vsftpd and ProFTPd.

LinuxSecurity.com Team
Mar 29, 2023

New ShellBot DDoS Malware Variants Targeting Poorly Managed Linux Servers

Poorly managed Linux SSH servers are being targeted as part of a new campaign that deploys different variants of a malware called ShellBot.

LinuxSecurity.com Team
Mar 26, 2023

Use Cockpit for Linux Remote Server Administration

Linux admins can use Cockpit to view Linux logs, monitor server performance and manage users. Use the tool to help admins manage servers, regardless of experience level.

LinuxSecurity.com Team
Mar 02, 2023

New Mirai Botnet Variant V3G4 Targets Linux Servers, IoT Devices

A new variant of Mirai — the botnet malware used to launch massive DDoS attacks —has been targeting 13 vulnerabilities in IoT devices connected to Linux servers, according to researchers at Palo Alto Network’s Unit 42 cybersecurity team.

LinuxSecurity.com Team
Feb 21, 2023

Server Security

Mallox Ransomware: A Rising Threat to Linux Servers

Who Needs Hackers? We've Got Microsoft!

Magnet Goblin Hackers Exploit One-Day Flaws to Deploy Custom Linux Malware

Discover Server Security News

Mallox Ransomware: A Rising Threat to Linux Servers

Magnet Goblin Hackers Exploit One-Day Flaws to Deploy Custom Linux Malware

New Bifrost Malware Evades Detection, Threatens Linux Server Security

Cryptocurrency Mining Migo Malware Attacks Linux Redis Servers

Mirai-based NoaBot Cryptomining Botnet Threatens Linux Servers

Warning: Poorly Secured Linux SSH Servers Under Attack for Cryptocurrency Mining

Apache ActiveMQ Vulnerability Exploited by Kinsing to Attack Linux Servers

Krasue RAT Malware Hides on Linux Servers Using Embedded Rootkits

Ubuntu Server Security Best Practices

Harden Ubuntu Server to Secure Your Container and Other Deployments

P2P Worm Attacking 307,000 Redis Instances on Linux and Windows Systems

Hackers Infect Linux SSH Servers with Tsunami Botnet Malware

The 7 Best SSH Clients for Linux

10 Best Linux Vulnerability Scanners to Scan Linux Servers – 2023

Winnti APT Hackers Attack Linux Servers With New Malware ‘Mélofée’

Mélofée: The Latest Malware Targeting Linux Servers

What Is the Difference between vsftpd and ProFTPd?

New ShellBot DDoS Malware Variants Targeting Poorly Managed Linux Servers

Use Cockpit for Linux Remote Server Administration

New Mirai Botnet Variant V3G4 Targets Linux Servers, IoT Devices

LinuxSecurity Poll

Which open source security automation tool do you use to protect against vulnerabilities?

Get the Latest News & Insights

News

Advisories

HOWTOs

Features

About Us

Powered By