Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 10 articles for you...
83
security advisorymalwareattack methodFitBit Security Flaw: Bluetooth Exploit Enables Quick Malware Delivery
A security researcher has developed a method by which one can exploit a vulnerability in FitBit fitness trackers and subsequently deliver malware to the target device in 10 seconds. . Axelle Apvrille (@cryptax), a malware researcher at network security firm Fortinet, has found that FitBit wearables are open on their Bluetooth ports, a property which could enable an attacker to connect a device from within a few meters away and deliver malware to the bracelet. . Axelle Apvrille (@cryptax), a malware researcher at network security firm Fortinet, has found that F. security, researcher, developed, method, which, exploit, vulnerability, fitbit. . LinuxSecurity.com Team
Mar 14, 2017
•
Hacks/Cracks
83
cyber threatsecurity riskattack methodHackers Exploit Existing Tools, Ditch Malware For Attacks
To avoid detection, some hackers are ditching malware and living "off the land" -- using whatever tools are already available in the compromised systems, according to a new report from Dell SecureWorks. In fact, this has been the case for nearly all the intrusions analyzed by the Dell SecureWorks . The cyber criminals typically start out with compromised credentials, said Phil Burdette, senior security researcher at Atlanta-based Dell SecureWorks, Inc. . Cyber intruders are progressively steering clear of traditional malware tactics by capitalizing on legitimate software within infiltrated networks, which heightens risks for cybersecurity.. Hackers Tactics, Cybersecurity Threats, Existing Tools Exploitation. . LinuxSecurity.com Team
Sep 14, 2015
•
Hacks/Cracks
67
security advisorysecurity issuesoftware flawRed Hat Research: Vulnerable TLS Implementations Expose RSA Keys
A number of TLS software implementations contain vulnerabilities that allow hackers with minimal computational expense to learn RSA keys. Florian Weimer, a researcher with Red Hat, last week published a paper called . The TLS implementations in these products, Weimer said, lack proper hardening to defend against what is known as the Lenstra attack against the Chinese Remainder Theorem, also known as RSA-CRT. . Multiple susceptible TLS versions threaten RSA key integrity, as highlighted in Veimer's findings showcasing insufficient protections.. TLS Improvements, RSA Key Protection, Cryptography Security. . LinuxSecurity.com Team
Sep 09, 2015
•
Cryptography
83
security advisoryaccess controlexploitKeycard Security Breach: Exploiting Access Control in Hotels
You probably don. The good news is that Brocious The link for this article located at MSNBC is no longer available. . Delve into the realm of hotel security flaws exposed by a master of keycard hacking, illustrating the ways common access systems can be breached.. Hotel Security, Lock Picking, Access Control, Security Breach. . LinuxSecurity.com Team
Aug 03, 2012
•
Hacks/Cracks
67
data breachsecurity riskattack methodXML Encryption Flaw Exposes Web Services To Security Risks
Watch your Web Services: the official XML Encryption Syntax and Processing standard can be broken. So say two researchers from Ruhr-University Bochum in Germany, who have demonstrated a practical attack against XML's cipher block chaining (CBC) mode. . "We were able to decrypt data by sending modified ciphertexts to the server, by gathering information from the received error messages," according to a statement released by the researchers, Juraj Somorovsky and Tibor Jager. They presented their findings in detail at last week's ACM Conference on Computer and Communications Security in Chicago. The link for this article located at Information Week is no longer available. . Experts uncover a weakness in JSON encryption that puts online services at risk, outlining actionable exploits on networks.. XML Encryption, Web Services Security, Encryption Flaw, Data Breach, Attack Method. . LinuxSecurity.com Team
Oct 25, 2011
•
Cryptography
83
security advisoryattack methodcybersecurity incidentLulzSec: Revamped Attack on Sun Newspaper Exposes Security Flaws
News yesterday that the Sun was hacked by LulzSec is just the latest in a long line of impressive hacks, but it again shows how hard it is to protect sites from such sustained, sophisticated attack.. LulzSec , a group of hackers which describes itself as, "a team of entertainment and security experts that specialise in the production of malicious comedic cybermaterials", managed to redirect visitors to the Sun's website yesterday evening to a hoax page falsely reporting that Rupert Murdoch had been found dead. It's not the first time a major UK newspaper has been hacked. Last April the Daily Telegraph saw its site hacked, apparently by a group angered by that paper's identification of Romanians as "gypsies" (they added a comment to one of paper's web pages that read, "Guess what, gypsies aren't romanians, morons.") The link for this article located at NewStatesman is no longer available. . The latest breach by LulzSec involving CNN underscores the persistent vulnerabilities websites face from advanced cyber threats.. LulzSec Hack, Web Security, Online Threats, Media Cyber Attack. . LinuxSecurity.com Team
Jul 19, 2011
•
Hacks/Cracks
79
security issueSHA-1brute forceThomas Roth Exploits Rentable GPUs to Crack SHA-1 Secure Hashing
A German security enthusiast has used rented computing resources to crack a secure hashing algorithm (SHA-1) password. Thomas Roth used a GPU-based rentable computer resource to run a brute force attack to crack SHA1 hashes. . Encryption experts warned for at least five years SHA-1 could no longer be considered secure so what's noteworthy about Roth's project is not what he did or the approach he used, which was essentially based on trying every possible combination until he found a hit, but the technology he used. What used to be the stuff of distributed computing projects with worldwide participants that took many months to bear fruit can now be done by a lone individuals in minutes and using rentable resources that cost the same price as a morning coffee to carry out the trick. Roth's proof-of-concept exercise cost just $2. This was the amount needed to hire a bank of powerful graphics processing units to carry out the required number-crunching using the Cuda-Multiforcer. The link for this article located at The Register UK is no longer available. . Cryptography experts emphasize weaknesses in SHA-1; a Belgian enthusiast cracks the code leveraging budget-friendly cloud GPU services.. Hashing Algorithm, GPU Rental, SHA-1 Security, Brute Force Attack, Encryption Research. . LinuxSecurity.com Team
Nov 19, 2010
•
Security Projects
83
security flawattack methodexploit techniqueNew Attack Method Bypasses Anti-Virus Software Using SSDT Exploit
A (nearly) new attack method is reportedly able to bypass anti-virus software for Windows in order to, for example, load infected drivers, despite protection mechanisms. The attack, developed by Matousec.com, makes use of the fact that many anti-virus programs hook into the kernel's System Service Descriptor Table (SSDT) in order to monitor program behaviour.. If a user calls a particular system function The link for this article located at H Security is no longer available. . New SSDT exploit bypasses anti-virus on Windows, allowing infected drivers to load despite existing protection measures.. Anti-Virus Bypass, SSDT Exploit, Windows Security Threat. . LinuxSecurity.com Team
May 11, 2010
•
Hacks/Cracks
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Explore top 10 tips to secure your open-source projects now. Read More