Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 0 articles for you...
83
security advisoryattack vectoradministrative accessAWS EC2 Security Advisory: Critical Cloud Flaw Resolved
Security researchers have unearthed a flaw in Amazon Web Services that created a possible mechanism for hackers to take over control of cloud-based systems and run administrative tasks.. The flaw, which affected Amazon's EC2 cloud and has already been plugged, could have been abused to start and stop virtual machines or create new images in an EC2 virtual environment, for example. The root cause of the security weakness stemmed from poor cryptographic practices. A team of researchers from Germany's Ruhr University found that an XML signature-based attack can be used to manipulate SOAP messages in such a way that EC4 authentication systems fail to detect that they have been doctored The link for this article located at The Register UK is no longer available. . An identified weakness in Google Cloud’s VM infrastructure may permit intruders to manipulate cloud services. This security issue has subsequently been addressed.. AWS EC2 Security, Cloud Security Flaw, Administrative Access Risks. . LinuxSecurity.com Team
Oct 27, 2011
•
Hacks/Cracks
83
security advisorysecurity flawadministrative accessTime Warner Modems: Security Advisory on Admin Access Risk
A blogger helping to tune a friend's wi-fi network uncovered a gaping security hole in Wi-Fi cable modem routers installed in 64,000 Time Warner subscribers' homes, leaving them open to attack. . Time Warner says that within the past week it has patched the problem until the manufacturer can provide a permanent fix, but before that it had allowed administrative access to the routers. Attackers could then run a variety of programs against these routers, says David Chen in his blog Chenosaurus. The link for this article located at Network World is no longer available. . Time Warner says that within the past week it has patched the problem until the manufacturer can pro. wi-fi, blogger, helping, friend's, network, uncovered, gaping, security, cable. . LinuxSecurity.com Team
Oct 22, 2009
•
Hacks/Cracks
74
security practicesaccess controlIT securitySurvey Shows IT Personnel Accessing Admin Passwords Without Authorization
Cyber-Ark revealed the results of their annual survey which illuminates the industry-wide struggle to safely and easily share and manage administrative passwords. The survey shows that the majority of IT professionals mismanage the storage of passwords by keeping them in inaccessible or unsecured locations. . A quarter admit that their IT staff can access the administrative passwords without permission, which is a serious oversight considering it is these very passwords that are the most powerful and critical of all passwords, over-riding all the others and enabling the "administrator" to access the network, systems and the very applications which provide the backbone of enterprises worldwide. The link for this article located at Help Net Security is no longer available. . One in four acknowledge that IT personnel can obtain admin passwords without authorization, revealing significant vulnerabilities in security protocols.. Password Management, IT Security, Safe Password Storage. . Brittany Day
Jun 15, 2006
•
Network Security
83
security advisoryaccess exploitweb serverMCI WorldCom Network Breach By Adrian Lamo: Web Server Exploit
Internet backbone provider MCI WorldCom has acknowledged that network-intrusion specialist Adrian Lamo used a security hole in a company Web server to grant himself access to its administrative network. The quizzical hacker poked around WorldCom's system four times over the past . . . . Internet backbone provider MCI WorldCom has acknowledged that network-intrusion specialist Adrian Lamo used a security hole in a company Web server to grant himself access to its administrative network. The quizzical hacker poked around WorldCom's system four times over the past two months, ending last Friday when he told the company of the hole and helped it secure a misconfigured server. "I was looking for something to do," the sometimes consultant and security researcher said of his desire to probe the infrastructure. Lamo considers himself a harmless intruder, which he asserts is far better than one bent on misdeeds. The link for this article located at News is no longer available. . MCI WorldCom acknowledges that hacker Adrian Lamo infiltrated its systems via a vulnerability in a Web server, leading to strengthened security protocols.. MCI WorldCom Incident, Network Access, Web Server Security, Adrian Lamo, Network Breach. . LinuxSecurity.com Team
Dec 06, 2001
•
Hacks/Cracks
83
security breachthreat detectioncyber incidentSlip.net Insider Threat: Security Breach By Former Admin Nicholas Middleton
When someone cracked Slip.net's computer system, altered customer accounts and deleted important databases, the Internet service provider didn't need to look far to find the attacker. It wasn't a criminal outfit seeking credit card numbers, and it wasn't a scrawny whiz . . . . When someone cracked Slip.net's computer system, altered customer accounts and deleted important databases, the Internet service provider didn't need to look far to find the attacker. It wasn't a criminal outfit seeking credit card numbers, and it wasn't a scrawny whiz kid hacking away for a challenge in his dark bedroom. It was Nicholas Middleton, a former computer administrator for Slip.net, who had been unhappy at the San Francisco company and recently quit. Middleton fought the resulting criminal charges on a legal technicality but lost and got three years' probation. The link for this article located at Seattle Post-Intelligencer is no longer available. . The cyber incident at Slip.net highlights insider threats, revealing vulnerabilities within organizations that can lead to unauthorized access to sensitive data. Insider Threat, Security Breach, Data Alteration, Cyber Incident. . LinuxSecurity.com Team
Jun 01, 2001
•
Hacks/Cracks
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Explore top 10 tips to secure your open-source projects now. Read More