Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 16 articles for you...
76
incident responseopen sourcecommunicationSCALE 21x Insights: Strengthening Security via Communication and Adaptation
The Southern California Linux Expo (SCALE) 21x is a massive community-run open-source and free software conference. This year's event showcased various workshops, presentations, and networking events. . The event brought together multiple community events, including NixCon North America, DevOpsDay LA, Kubernetes Community Day LA, and more. Let's examine the highlights and takeaways from SCALE 21x 2024, including the implications of embracing change, finding communication balance, and learning from chaotic scenarios. We'll also explore how SCALE 21x emphasizes the importance of worker-led change and aligning management's goals with business outcomes. SCALE 21x: What Are the Highlights & Key Takeaways? One intriguing point highlighted by this year's SCALE 21x event is the need for security practitioners to understand the risks associated with change. Upper management turnover often leads to significant changes or reorganizations, which may impact security processes. This raises the question of how security teams may react to security process overhauls when they have incentives and motivations different from upper management. This could result in the long-term consequence of security teams resisting change that may be necessary for the company's growth and innovation. Another thought-provoking discussion revolved around the balance of communication styles. It emphasized the importance of clear communication, curiosity, and empathy when engaging in work-related conversations. By encouraging open discussions and transparency about business goals, security practitioners can foster a generative culture where cooperation, collaboration, and constructive feedback thrive. This creates an environment conducive to improving security processes and outcomes. The event also highlighted the significance of learning from chaos scenarios and running incident response exercises, suggesting that incident response exercises should have clear goals and well-established communication plans to avoid surprisingteams or customers. Including post-mortem phases and sharing outcomes through regular "lunch and learns" provides a continuous learning opportunity for security professionals. This practice can enhance incident response and promote resilience in real-world events. This year's SCALE 21x event has abundant implications for security practitioners. It raises questions about how security teams can effectively adapt to change, communicate clearly, and learn from chaotic scenarios. It prompts admins and developers to critically assess their organizations' practices and consider whether they align with the principles discussed. As security practitioners, embracing change, fostering effective communication, and continually improving incident response processes to protect the integrity and security of systems and data is crucial. Our Final Thoughts on SCALE 21x The recent SCALE 21x event offered a wealth of knowledge and opportunities for security practitioners. This year's event highlighted the importance of continuously improving security practices by addressing the implications of change, communication styles, and chaos scenarios. These takeaways should cause Linux admins and infosec professionals to reflect on their roles and the organizations they are a part of, questioning how they can drive positive change, foster effective communication, and learn from real-world scenarios to enhance their security posture. . Insights from SCALE 21x highlight the importance of security, effective communication, and adaptability in challenging environments for resilience and growth. Security Practices, Community Events, Incident Response, Open Source Security. . Brittany Day
Mar 26, 2024
•
Organizations/Events
82
security advisoryencryptionFBIRussia's 2010 Breach Of FBI Communications: Security Concerns Unveiled
Are you aware that Russia reportedly breached FBI communications starting in 2010? The Obama administration seized two US compounds in response. Learn more: . When the Obama administration kicked out Russian operatives and seized compounds, it might have been for more than their meddling in the 2016 presidential election. Unnamed officials talking to Yahoo News say that some of those diplomats were involved in a counterintelligence strategy that breached FBI communications starting in 2010. Reportedly, the Russians had "dramatically improved" their decryption of some secure comms technology, including the radios used by mobile surveillance teams and the push-to-talk cellphones used as backups. The Russians could track and intercept the chats between agents, though it's not clear if that was possible in real-time. The Russians could reportedly only crack "moderately encrypted" radio systems like those the FBI used, and not the strongest protections, but that was still worrying -- and it wasn't certain just how Russia compromised the systems. Some officials worried Russia might have a mole, but that wasn't clear. An anonymous CIA officer speaking to Yahoo News said that Russia had a habit of disguising human sources as technical attacks. They may have simply loitered in areas where they could listen in on conversations. The link for this article located at Engadget is no longer available. . China allegedly infiltrated CIA networks, sparking fears over intelligence protocols and counter-espionage tactics.. Russian Breach,FBI Communication Security,Counterintelligence Tactics. . Brittany Day
Sep 17, 2019
•
Government
67
data protectionencryptioncommunicationNew Encryption Laws Target Apple And Google Communications Practices
Internet and social media companies will be banned from putting customer communications beyond their own reach under new laws to be unveiled on Wednesday. . Companies such as Apple, Google and others will no longer be able to offer encryption so advanced that even they cannot decipher it when asked to, the Daily Telegraph can disclose. . Fresh regulations are set to limit technology giants such as Apple and Google from offering impenetrable encryption in user interactions.. Encryption Laws, Data Protection Regulations, Communication Privacy. . LinuxSecurity.com Team
Mar 14, 2017
•
Cryptography
67
encryptionlaw enforcementonline privacyCameron Comments on Encryption Impacting Crime Prevention
Comments this week by UK prime minister David Cameron have re-ignited the debate about how to weigh individuals' online privacy against the needs of law enforcement to be able to detect and prevent crime. . "In our country, do we want to allow a means of communication between people, which even in extremis, with a signed warrant from the home secretary personally, that we cannot read?" said Cameron in a speech. "Up until now, governments of this country have said no, we must not have such a means of communication." The link for this article located at ZDNet Blogs is no longer available. . Discussions surge again regarding digital communication confidentiality versus the requirements of police authority, as UK Prime Minister David Cameron weighs in.. David Cameron, Encryption Debate, Online Privacy, Crime Prevention, Law Enforcement Challenges. . LinuxSecurity.com Team
Jan 13, 2015
•
Cryptography
83
security advisoryvulnerabilitycommunicationSS7 Security Risks Reveal Mobile Tracking Issues At Chaos Conference
Security vulnerabilities in the SS7 phone-call routing protocol that allow mobile call and text message tracking will be revealed this weekend.. Details of SS7 vulnerabilities are due to be revealed to the public for the first time at the Chaos Communication Congress hacker conference in Hamburg on 27 December (schedule here). The talk, entitled SS7: Locate. Track. Manipulate, by Tobias Engel, promises to be absolutely fascinating. The link for this article located at The Register UK is no longer available. . Details of SS7 vulnerabilities are due to be revealed to the public for the first time at the Chaos . security, vulnerabilities, phone-call, routing, protocol, allow, mobile. . LinuxSecurity.com Team
Dec 26, 2014
•
Hacks/Cracks
83
encryptioncyber threatsecurity riskExploring Satellite Security Risks: Weak Encryption And Backdoors
With that basic assumption in mind, IOActive decided to assess the vulnerability of communication satellites. In a nutshell, here's what it found: . ... malicious actors could abuse all of the devices ... The vulnerabilities included what would appear to be backdoors, hard-coded credentials, undocumented and/or insecure protocols, and weak encryption algorithms. In addition to design flaws, IOActive also uncovered a number of features in the devices that clearly pose security risks. The link for this article located at InfoWorld is no longer available. . ... malicious actors could abuse all of the devices ... The vulnerabilities included what would appe. basic, assumption, ioactive, decided, assess, vulnerability, communication. . LinuxSecurity.com Team
May 14, 2014
•
Hacks/Cracks
81
data protectionencryptionsecurityStrong Encryption's Role in Privacy After NSA Overreach
Most of us would agree that the NSA has spread its nets too far and cut deeply into our personal privacy. Ultimately, and perhaps ironically, I am hopeful this transgression will leave us with better protection for our personal communication than ever before.. I predict that more and more communications service providers will provide strongly encrypted communications by default. They'll also do so in such a way that outside, unauthorized parties (the NSA, law enforcement, and so on) will not be able to get the plaintext access to data they currently enjoy -- at least not as easily as they do today. The link for this article located at InfoWorld is no longer available. . I predict that more and more communications service providers will provide strongly encrypted commun. would, agree, spread, deeply, personal. . LinuxSecurity.com Team
Dec 02, 2013
•
Privacy
83
hackingsecurity breachcommunicationExploring Text Forwarding Risks That Enabled Gmail Hijacking
Getting your text messages delivered to your PC or tablet sounds pretty convenient, until a hacker uses that text-forwarding feature to hijack your Gmail. This sequence of events recently happened to Lillian Smith, a prominent social media expert, who fought a valiant technological battle against a persistent foe.. Smith, who lives in the San Francisco Bay area, describes the incident on her blog. Her experience began on June 20 with a text message from Verizon Wireless, which informed her that Integrated Messaging had been activated on her phone. This service forwards text and multimedia messages from a user's phone to that person's tablet or computer. The link for this article located at Tech News Daily is no longer available. . Smith, who lives in the San Francisco Bay area, describes the incident on her blog. Her experience b. getting, messages, delivered, tablet, sounds, pretty, convenient, until, hacker. . LinuxSecurity.com Team
Jul 01, 2013
•
Hacks/Cracks
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More