Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 2 articles for you...
78
security advisoryMozilla FirefoxadwareMozilla Firefox Superfish Removal: Security Update for Adware Interception
Mozilla has issued a hot fix for Firefox that removes the Superfish root certificate from the browser. The Superfish adware performs SSL interception The link for this article located at ThreatPost is no longer available. . Microsoft tackles malware issues by updating Windows Defender's heuristic algorithms, bolstering user protection against phishing attempts.. Mozilla Firefox, Superfish, adware removal, web security, SSL interception. . LinuxSecurity.com Team
Mar 03, 2015
•
Vendors/Products
67
security advisoryexposureman-in-the-middleLenovo: Superfish Man-In-The-Middle Risk From Password Crack
Lenovo laptop owners are at risk for man-in-the-middle attacks as a vulnerability disclosed in pre-installed Superfish adware went nuclear this morning.. Researcher Rob Graham of Errata Security published a report in which he said he cracked the password protecting the digital certificate shipped with Superfish. Superfish, according to Lenovo, analyzes images on the Internet and serves up ads for products similar to the image. The link for this article located at ThreatPost is no longer available. . Studies indicate that certain Lenovo laptop models are at risk for man-in-the-middle intrusions due to vulnerabilities exposed following the breach of Superfish password security.. Lenovo Superfish, Adware Risks, Man-in-the-Middle Attack. . LinuxSecurity.com Team
Feb 20, 2015
•
Cryptography
81
security advisoryadwareEnd User License AgreementAdware Threats Examined: AOL Security Toolbar EULA Analysis
I was recently contacted by an America Online (AOL) vice president, Ted Hopper, about our BHO listing of "AOL Security Toolbar" which was described as having adware functionality. That phone call set into motion what ultimately is presented here. . AOL recently launched a new service/product called Active Virus Shield (Security Toolbar) which received some controversial press [1]. It comes with the free Kaspersky AV technology. By all reports the application itself could not be found to serve adware (testing done by external parties). But that is not what this article is about. It is the end user license agreement (EULA) which has raised some eyebrows. We find it treading adware territory, and here is why as we show via the interesting portions from the EULA... The link for this article located at CastleCops.com is no longer available. . AOL recently launched a new service/product called Active Virus Shield (Security Toolbar) which rece. recently, contacted, america, online, (aol), president, hopper, about, listin. . LinuxSecurity.com Team
Aug 22, 2006
•
Privacy
83
malwaresecurity researchonline threatsRussian Affiliate Model Spreads Malware Through Exploits
An online business based in Russia will pay Web sites 6 cents for each machine they infect with adware and spyware, security researchers said Tuesday, calling the practice "awful." . iframeDOLLARS.biz, which according to a WHOIS lookup, is registered to a Nick Fedorov in Nizhny Novgorod, a Russian city on the Volga about 240 miles east of Moscow, will pay Webmasters to place a one-line exploit on their sites. The code exploits a number of patched Windows and Internet Explorer vulnerabilities, including some that go back as far as 2002. Systems that haven't been updated, however, would still be vulnerable to the exploit. According to analysis done by the SANS Institute's Internet Storm Center, the exploit drops at least nine pieces of malicious code, including backdoors, other Trojans, spyware, and adware, on any PC whose user surfs to a site hosting the exploit code. iframeDOLLARS says it pays $61 per thousand unique installs, or 6.1 cents per compromised machine, to any site that signs up as an affiliate. The Russian firm boasts that its exploit works "without any ActiveX console or any pop-upsIt means that you will not lose your unique visitors." Nor, apparently, give away the fact that the code is dropping malware onto machines whenever a vulnerable user simply visits an affiliate site. According to the Internet Storm Center, organizations can prevent the downloading of adware and spyware from iframesDOLLARS' servers by blocking the IP address 81.222.131.59. The link for this article located at Security Pipeline is no longer available. . Russian cybercriminals exploit affiliate models to distribute spyware via compromised websites, incentivizing partners to install malware through deceptive ads and links. Spyware Distribution, Adware Tactics, Online Security Threats. . LinuxSecurity.com Team
May 25, 2005
•
Hacks/Cracks
83
security researchmalware analysisspywareSpyware Analysis Insights: Leveraging Virtual Machines for Safer Research
The 25-year-old researcher has spent years analyzing how spyware and adware programs work and publicizing his findings. That often results in red faces and, occasionally, lawsuit threats from companies like WhenU and Claria, formerly known as Gator. When testing spyware and adware, Edelman isn't about to sacrifice his own Windows XP computer. So he uses the VMware utility to create a virtual Windows box. . "I infect the hell out of it," he says. "It destroys the infected machine." A law student at Harvard University, Edelman is also working on a doctoral degree in economics. CNET News.com caught up with him after he spoke at a conference in San Francisco sponsored by News.com's sister site, Download.com.. At the cybersecurity symposium, a researcher shared innovative insights on spyware operations, stressing ethical study guidelines and the need for strong countermeasures.. Malware Analysis, Virtual Machines, Security Research. . LinuxSecurity.com Team
May 05, 2005
•
Hacks/Cracks
78
malwarecybersecuritythreat managementMicrosoft's Strategy to Combat Adware and Malware Challenges
Microsoft chairman Bill Gates says he's never had a computer virus, but that adware and malware have him ticked off enough that Microsoft plans to do something about them. Precisely what that might be Gates didn't say, although the figure "hundreds of millions" of dollars was mentioned. . . .. MOUNTAIN VIEW, Calif.--Microsoft chairman Bill Gates says he's never had a computer virus, but that adware and malware have him ticked off enough that Microsoft plans to do something about them. Precisely what that might be Gates didn't say, although the figure "hundreds of millions" of dollars was mentioned. Speaking Friday at the Computer History Museum here, Gates said the industry is "halfway to solving spam," with good filtering available but the message authentication piece remaining to be solved. The link for this article located at David Coursey is no longer available. . In an interview, Bill Gates elaborates on Microsoft's initiatives to address the growing threats of adware and malware, highlighting considerable financial commitments.. Bill Gates, Microsoft Approach to Malware, Cybersecurity Awareness. . LinuxSecurity.com Team
Oct 05, 2004
•
Vendors/Products
81
open sourcefile-sharinguser privacyDr. Damn Strips Adware From Grokster and iMesh for Privacy
The record companies had their Napster, and the stream of file-swapping companies that followed. The file-swapping companies now have their "Dr. Damn." For the past several weeks, the pseudonymous programmer, a college student who declines to give his real name, has been releasing versions of popular file-swapping programs online with the advertising and user-tracking features stripped out.. . .. The record companies had their Napster, and the stream of file-swapping companies that followed. The file-swapping companies now have their "Dr. Damn." For the past several weeks, the pseudonymous programmer, a college student who declines to give his real name, has been releasing versions of popular file-swapping programs online with the advertising and user-tracking features stripped out. He's done Grokster and iMesh. And he's not alone. His work, now available through the Grokster and iMesh networks themselves, joins that of other programmers who have previously "cleaned" programs such as Kazaa and Audio Galaxy in a campaign against "adware" and "spyware." "I've never been a big fan of large companies spying on their users," Dr. Damn wrote in an instant messenger interview. "Especially me." The link for this article located at MSNBC is no longer available. . A university student launches simplified peer-to-peer sharing tools similar to LimeWire and Kazaa, aiming to combat malware and intrusive ads.. File Sharing Software, Adware Removal, Open Source Applications. . LinuxSecurity.com Team
Apr 25, 2002
•
Privacy
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More