Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found -1 articles for you...
83
open source toolcybersecurity frameworkcommand and controlAdoption of Sliver C2 Increases Among Cyber Threat Actors Today
An increasing number of threat actors have started relying on the command-and-control (C2) framework Sliver as an open-source alternative to tools such as Metasploit and Cobalt Strike. . Security researchers at Cybereason described the new phenomenon in an advisory published last Thursday, adding that Sliver is gaining popularity due to its modular capabilities (via Armory), cross-platform support and vast number of features. “Sliver C2 is getting more and more traction since its release in 2020,” reads the report. “As of today, the number of threat intelligence reports is still low, and the main reports describe the use of the Russian SVR leveraging Sliver C2.” In particular, the team said it already noticed Sliver with known threat actors and malware families such as BumbleBee and APT29 (also known as Cozy Bear). . Experts at Security Inc. have highlighted the growing popularity of the Sliver command and control (C2) framework among cybercriminals.. Sliver C2, Cybersecurity Framework, Open Source Tools. . LinuxSecurity.com Team
Jan 24, 2023
•
Hacks/Cracks
83
malwarecyber attacksecurity threatGoScanSSH Malware Threatens Linux SSH Servers' Security
A recently discovered malware family written using the Golang (Go) programming language is targeting Linux servers and using a different binary for each attack, Talos warns.. Dubbed GoScanSSH because it compromises SSH servers exposed to the Internet, the malware’s command and control (C&C) infrastructure leverages the Tor2Web proxy service to prevent tracking and takedowns.. GoScanSSH is a complex malware targeting SSH services on Linux, exploiting vulnerabilities and misconfigurations to infiltrate systems and maintain access. GoScanSSH Malware,Linux Server Security,Golang Threats. . LinuxSecurity.com Team
Mar 28, 2018
•
Hacks/Cracks
83
security advisorythreat analysisdata breachMalware Attack Report: RSA Breaches Impact 760 Companies
According to Brian Krebs, security 'analyst and writer' who recently published a report, the malicious program utilized for breaching RSA Security previously during 2011, possibly has been utilized within assaults aimed at over 700 other companies, published EWeek dated October 24, 2011. . Apparently, the malicious program hit eBay, Google, Facebook and the rest of the total 760 companies assaulted, employing the identical central C&C (command-and-control) server, which was utilized for the RSA compromise, the expert stated. The link for this article located at spamfighter is no longer available. . A harmful software affected Amazon, Microsoft, Twitter and 850 additional firms via similar intrusions.. Malware Incidents, RSA Breach, Cybersecurity Threats, Threat Analysis, Data Breach. . LinuxSecurity.com Team
Nov 02, 2011
•
Hacks/Cracks
83
security researchcybercrimebotnetUnveiling Zeus 2 Botnet's Command Center Targeting UK Users
Security researchers have uncovered the command and control network of a Zeus 2 botnet sub-system targeted at UK surfers that controlled an estimated 100,000 computers.. Cybercrooks based in eastern Europe used a variant of the Zeus 2 cybercrime toolkit to harvest personal data - including bank log-ins, credit and debit card numbers, bank statements, browser cookies, client side certificates, and log-in information for email accounts and social networks - from compromised Windows systems. Trusteer researchers identified the botnet's drop servers and command and control centre before using reverse engineering to gain access its back-end database and user interface. A log of IP addresses used to access the system, presumably by the cybercrooks that controlled it, was passed by Trusteer onto the Metropolitan Police. The link for this article located at The Register UK is no longer available. . Cybercrooks based in eastern Europe used a variant of the Zeus 2 cybercrime toolkit to harvest perso. security, researchers, uncovered, command, control, network, botnet, sub-system. . LinuxSecurity.com Team
Aug 04, 2010
•
Hacks/Cracks
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More