Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 4 articles for you...
83
security advisoryunauthorized accessdata breachClarksons: 2017 Data Breach - Unauthorized Access Via Single User Account
Clarkson PLC has revealed that a single user account was at the crux of a data breach resulting in the theft of confidential information.. The cybersecurity incident took place in 2017, in which threat actors gained access to internal systems from May 31, 2017, until November 4, 2017. The link for this article located at ZDNet is no longer available. . In 2018, a breach occurred that highlighted the dangers of weak passwords, resulting in exposure of sensitive information through a compromised account.. Data Breach, Cyber Incident, Unauthorized Access, User Account, Confidential Data. . LinuxSecurity.com Team
Jul 31, 2018
•
Hacks/Cracks
83
data breachcyber attacksecurity incidentAnonymous Data Breach: Impact on Stratfor and US Air Force
The loose-knit hacking movement "Anonymous" claimed Sunday to have stolen thousands of credit card numbers and other personal information belonging to clients of U.S.-based security think tank Stratfor. One hacker said the goal was to pilfer funds from individuals' accounts to give away as Christmas donations, and some victims confirmed unauthorized transactions linked to their credit cards.. Anonymous boasted of stealing Stratfor's confidential client list, which includes entities ranging from Apple Inc. to the U.S. Air Force to the Miami Police Department, and mining it for more than 4,000 credit card numbers, passwords and home addresses. The link for this article located at BusinessWeek is no longer available. . A hacker group has taken credit for a breach of a major security firm's database, exposing sensitive data linked to clients including the Department of Homeland Security. Anonymous Hacking Group, Stratfor Breach, Cybersecurity Threats. . LinuxSecurity.com Team
Dec 26, 2011
•
Hacks/Cracks
82
data breachidentity theftlegal challengeRocky Mountain Bank Legal Challenge: Data Leak of Customer Info
A US bank is suing Google for the identity of a Gmail user after a bank employee accidentally sent the user a file that included the names, addresses, tax IDs, and loan info for more than 1,300 of the bank's customers.. In mid-August, according to court documents filed in a California federal court, the Wyoming-based Rocky Mountain Bank was asked by a customer to send certain loan documents to a Gmail account belonging to a third party. A bank employee attempted to do so. But a day later, he realized he had sent the documents to the wrong address - along with a file containing confidential information for 1,325 other customers. After a failed attempt to recall the email, the employee sent a second note to that wrong address, requesting that the confidential email be deleted before it was opened. There was no response, so the bank contacted Google to determine what could be done to ensure that the confidential info remained confidential. According to the court papers, Google would not provide information on the account unless it received a subpoena or "other appropriate legal process." The link for this article located at The Register is no longer available. . A prominent U.S. financial institution has launched a lawsuit against Google, demanding the identity of a Gmail user linked to a mishap involving sensitive client data.. Data Breach, Email Privacy, Identity Theft. . Anthony Pell
Sep 23, 2009
•
Government
67
password managementconfidential informationsecure storageEfficient Password Management Through GPG and SSH Accessibility
Like many Internet addicts, I have way too many user name/password accounts to remember: accounts on social-networking sites, rarely used logins at work, on-line banking and so on. One solution to this problem is to use the same user name and password everywhere, but that's clearly not safe; if people get a hold of your account information in one place, they own all your other accounts too. I wanted a relatively safe, flexible and easy way to store passwords and other useful confidential information. I also wanted it to be easily accessible, which meant that I'd like to get at it over a text-only SSH connection. And, I wanted it to be something that could move around from machine to machine without too much trouble. This article looks at ways of storing passwords securely. With all those password we have to remember it's a good securely practice to store them encrypted.. . Explore reliable and adaptable options for safeguarding credentials using GPG and SSH access techniques.. Password Management Solutions,GPG Encryption,Secure Passwords,SSH Access. . LinuxSecurity.com Team
May 15, 2008
•
Cryptography
77
security issuedata breachinformation theftWells Fargo: Customer Notification On Data Breach Due To Theft
For the fourth time in the past 30 months, Wells Fargo & Co. has begun notifying customers about the potential compromise of confidential information following the theft of a company computer containing data on mortgage customers and prospective clients. The San Francisco-based bank on Friday posted a statement on its Web site saying that a computer belonging to its mortgage group had been reported as missing while being transported between Wells Fargo facilities by a global express shipping company. . The stolen system contained information such as names, addresses, Social Security numbers and mortgage loan account numbers of Wells Fargo customers. "The computer has two layers of security, making it difficult to access the information," the bank said. So far, at least, there is no indication that the information kept on the computer has been misused in any way, said Alejandro Hernandez, a company spokesman. The link for this article located at ComputerWorld.com is no longer available. . Bank of America confronts security incident following the misplacement of a device containing sensitive loan records.. Data Breach,Wells Fargo,Confidential Information,Customer Notification. . LinuxSecurity.com Team
May 09, 2006
•
Server Security
74
data protectiondata breachinformation securityEnsuring Protection: Learning From Information Security Breaches
Every issue of The ISO17799 Newsletter features at least one TRUE story of an information security breach and its consequences: 1) The 'Perfect' Business Continuity Plan Yes, we have published this one previously - but it is our favorite true story! . . .. Every issue of The ISO17799 Newsletter features at least one TRUE story of an information security breach and its consequences: 1) The 'Perfect' Business Continuity Plan Yes, we have published this one previously - but it is our favorite true story! A major financial institution took pride in its business continuity planning, and had in place what it considered to be a comprehensive plan of the highest quality. Indeed, the plan itself had been fully tested only days prior to the fateful incident. On a quiet Sunday afternoon, the tranquility was disturbed by a large explosion in their main office block in the center of a large city. It was not a bomb or terrorist incident, but a serious gas explosion. The company confidently swung the BSP into full effect, almost as quickly as the media hit town, to immediately discover something that the plan, as good as it was, had overlooked! The streets were full of paper from the office containing a wide variety of confidential customer information. Sensitive data was lying around for any passer by or observer to simply pick up and read. For all the planning and testing, a single security lapse had cost them dear, as this aspect of the incident was reported again and again. The moral of the story is of course that the office clean desk policy, and secure filing of confidential data policy, can actually prove to be extremely important! The link for this article located at OSI is no longer available. . Information security breaches can have severe consequences, as seen in the Equifax and Sony Pictures incidents, stressing the need for robust security measures. ISO17799, business continuity, data breach, security practices. . Anthony Pell
Jan 16, 2004
•
Network Security
67
encryptionemail securitysecurity integrationIntegrating Digital IDs for Secure Email Communications in Enterprises
Do people in your company send confidential information to business partners or remote employees via Internet email? Are they using some form of digital ID system to secure their communications? If they're not, any sensitive information contained in those messages is at risk as the email travels across the Internet.. . .. Do people in your company send confidential information to business partners or remote employees via Internet email? Are they using some form of digital ID system to secure their communications? If they're not, any sensitive information contained in those messages is at risk as the email travels across the Internet. The reason being that any hacker with the right tools and enough determination can intercept those messages. Once intercepted, the sensitive information could be easily read and then be used for any number malevolent purposes. For example, the message could be altered and then passed on to the recipient, used for blackmail, or even passed on to competitors. The ultimate casualty of such an attack could be your company's reputation. If the idea of confidential information falling into the wrong hands scares the living daylights out of you, you'll definitely want to consider integrating some form of digital ID system into your enterprise email system. A digital ID, which is also known as a digital certificate, is made up of two main components a digital signature and an encryption scheme. The digital signature is designed to verify that the message is really from the sender and that the message hasn't been altered while it traveled across the Internet. The encryption scheme is designed to scramble the message so as to make it unreadable with out the proper decryption tool. The link for this article located at 8Wire is no longer available. . Do people in your company send confidential information to business partners or remote employees via. people, company, confidential, information, business, partners, remote, employees. . LinuxSecurity.com Team
Feb 08, 2002
•
Cryptography
82
data exposureconfidential informationgovernment siteU.S. Commerce Website Leaks Sensitive Business Information Publicly
A U.S. government website devoted to helping businesses keep sensitive information private instead revealed confidential information about American firms. A Commerce Department privacy website exposed proprietary information -- such as revenue, number of employees, and the European countries with which . . . . A U.S. government website devoted to helping businesses keep sensitive information private instead revealed confidential information about American firms. A Commerce Department privacy website exposed proprietary information -- such as revenue, number of employees, and the European countries with which the firm does business -- that U.S. companies provided to the government in strict confidence. This information has been publicly accessible since the site went online last year. The link for this article located at Wired is no longer available. . A federal agency website, intended to protect user confidentiality, accidentally disclosed confidential corporate information, prompting alarm over data security.. Data Exposure, Privacy Breach, Business Security, Confidential Data. . Anthony Pell
Jul 06, 2001
•
Government
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More