Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 4 articles for you...
81
security advisorytwo-factor authenticationprivacy enhancementRing Requires Two-Factor Authentication For Enhanced Account Security
Ring is continuing its bid toimprove privacy and securityafter facing criticism. As of today, the Amazon brand will startrequiringtwo-factor authentication for all users when they sign into their Ring accounts. . When the feature reaches you this week, you'll always get a six-digit code sent to either your email or ( less recommended ) SMS in order to complete the login process. This move will seem more than a little familiar when Nest announced a similar requirement just a week earlier, but it's still good news when it promises to raise the baseline security for Ring's smart home devices. The link for this article located at Engadget is no longer available. . Nest introduces mandatory biometric login for every account, boosting protection and safety for connected home device management.. Two-Factor Authentication, Home Security Devices, Account Protection, Privacy Enhancement. . LinuxSecurity.com Team
Feb 18, 2020
•
Privacy
81
data breachcyber threatpassword securityRecognizing Frequently Hacked Passwords and Their Associated Dangers
Hundreds of millions of internet users continue to put themselves at risk of having their accounts hacked by using incredibly simple and commonly used passwords which can easily be guessed by cyber criminals - or worse, just plucked from databases of stolen information. . An analysis of the 100,000 most common passwords made public by data breaches and hacking campaigns suggests that vast swathes of people still don't understand the importance of having a strong password – or how to create one – using names, sports teams, bands and even just keys close together on the keyboard in an effort to secure accounts. The passwords have been gathered using information from global data data breaches which are already in the public domain, having been leaked, shared or sold by hackers on the dark web. The link for this article located at ZDNet is no longer available. . Exploration of frequently employed passcodes from security leaks uncovers a major vulnerability for individuals.. Password Security, Data Breach Analysis, Cyber Threats, Account Protection. . LinuxSecurity.com Team
Apr 21, 2019
•
Privacy
78
security advisoryuser authenticationaccount protectionGoogle Blocks Log-Ins From Embedded Browsers To Mitigate Phishing Risk
Embedded browsers within apps can be useful if you want to use an existing account from another service -- say, your Gmail log-in -- to access their features. However, they're also really easy to weaponize for man-in-the-middle types of phishing attacks. Since Google can't differentiate between a legitimate log-in and a phishing attempt through a browser from within an application, it's blocking sign-ins from all embedded browser frameworks starting in June. . Bad actors can exploit embedded browsers, such as Chromium Embedded Framework, by intercepting communications between the user and providers like Google. The method gives them a way to steal log-in credentials, sometimes even multi-factor authentication details, in real time. Google has been implementing more security measures around log-ins in recent months in an effort to protect users' details. In late 2018, for instance, it launched a risk-assessment feature that requires JavaScript to be able to sign into your account. The link for this article located at Engadget is no longer available. . Tech giant Microsoft limits third-party app sign-ins to safeguard user data from potential hacks, promoting safer account management practices.. Embedded Browser Security, Phishing Prevention, User Authentication Issues. . LinuxSecurity.com Team
Apr 19, 2019
•
Vendors/Products
81
two-factor authenticationpassword managementcybersecurity tipsStrong Passwords And Two-Step Authentication For Enhanced Security
Not long after I began writing about cybersecurity, I became a paranoid caricature of my former self. It's hard to maintain peace of mind when hackers remind me every day, all day, just how easy it is to steal my personal data. . Within weeks, I set up unique, complex passwords for every website, enabled two-step authentication for my email accounts, and even covered up my computer's Web camera with a piece of masking tape The link for this article located at Sydney Morning Herald is no longer available. . Creating distinct, intricate passcodes and activating dual-factor verification to improve digital security.. Password Management, Online Security, Two-Factor Authentication. . LinuxSecurity.com Team
Nov 12, 2012
•
Privacy
83
security advisorydata breachcyber incidentWashington Post Data Breach: 1.3 Million Accounts Exposed in Cyber Incident
The Washington Post website has been hit with a double security breach. Hackers have made off with around 1.3 million user IDs and email address from the . To their credit, the Washington Post appears to have acted quickly to plug the gap and set up an appropriate response. It appears that user passwords and other personal information remains safe. The Post is currently investigating the incident, has taken steps to prevent against similar attacks, and is The link for this article located at Acunetix is no longer available. . The New York Times promptly addressed a major data leak that compromised 2 million subscriber profiles. Discover further details.. Washington Post Data Breach, User Account Security, Cyber Incident. . LinuxSecurity.com Team
Jul 14, 2011
•
Hacks/Cracks
83
security advisorysecurity issueaccount protectionEMU Security Advisory: Compromised Login Details Reported
Eastern Michigan University officials said this morning that a security breach discovered Saturday has compromised login information for students and staff.. But the area breached did not contain Social Security numbers, birth dates, or personal banking information. Walter Kraft, EMU vice president of communications, said in an e-mail to the campus community this morning that EMU has thus far received no reports of issues related to the breach. The security breach occurred about 11:30 p.m. Friday, according to the e-mail, and was discovered Saturday by the school The link for this article located at AnnArbor is no longer available. . Sensitive login credentials for Eastern Michigan University students and personnel have been exposed in a data breach, although no personal banking details were affected.. EMU Security Breach, Account Compromise, Student Data Protection. . LinuxSecurity.com Team
Sep 07, 2010
•
Hacks/Cracks
81
risk assessmentpassword managementpassword securityProven Techniques to Strengthen Vulnerable Password Security Today
Internet standards expert, CEO of web company iFusion Labs, and blogger John Pozadzides knows a thing or two about password security. If you invited me to try and crack your password, you know the one that you use over and over for like every web page you visit, how many guesses would it take before I got it? Let's see. If you invited me to try and crack your password, you know the one that you use over and over for li. internet, standards, expert, company, ifusion, blogger, pozadzides, knows. . LinuxSecurity.com Team
Mar 31, 2010
•
Privacy
81
data breachemail securityauthentication toolCheck Your Email Credentials For Compromise Using Serversniff
Users who fear that the access credentials of their email accounts have appeared on the recently published list can now run a test to check. On Serversniff, Thomas Springer has set up a page that checks whether an email address appears on the known lists. To run the test, users simply enter the part of their email address before the "@" and the system will display any matching entries. However, only the first and last letter of the password will appear.. One may feel inclined to ask why the email providers, who also have access to these lists, haven't offered a similar service. Email providers such as Microsoft, Yahoo and Google initially assured users that all those affected had been informed and the compromised accounts had been blocked. However, it turned out that the list still contained valid access credentials for accounts used, for instance, to initiate password resets with services like PayPal, even days after the incident became known. The link for this article located at H Security is no longer available. . One may feel inclined to ask why the email providers, who also have access to these lists, haven't o. users, credentials, their, email, accounts, appeared, recently. . LinuxSecurity.com Team
Oct 15, 2009
•
Privacy
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Explore top 10 tips to secure your open-source projects now. Read More