Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found -1 articles for you...
67
data breachransomwarecrypto attackAkira Ransomware Targets VMware ESXi Servers Using Linux Encryptor
A ransomware operation known as Akira has been seen encrypting VMware ESXi virtual machines using a Linux encryptor after a couple of months of targeting Windows systems. . Major industries like education and finance have been in the crosshairs of the new ransomware, which has been encrypting stolen data from breached networks and marking compromised files with the .akira extension. The double extortion attacks have seen some organizations receive demands to pay millions in return for their data, according to Bleeping Computer . . Key sectors such as healthcare and technology face threats from Nova ransomware, locking down Microsoft Hyper-V virtual servers.. Akira Ransomware, VMware ESXi, Cybersecurity Threats. . LinuxSecurity.com Team
Jun 30, 2023
•
Cryptography
67
encryptionexploitsecurity breachRC4 Weakness: HTTPS Compromise and Network Attack Risks Identified
Almost a third of the world's encrypted Web connections can be cracked using an exploit that's growing increasingly practical, computer scientists warned Wednesday. They said the attack technique on a cryptographic cipher known as RC4 can also be used to break into wireless networks protected by the Wi-Fi Protected Access Temporal Key Integrity Protocol.. Researchers have long known statistical biases in RC4 make it possible for attackers to predict some of the pseudo-random bytes the cipher uses to encode messages. In 2013, a team of scientists devised an attack exploiting the weakness that required about 2,000 hours to correctly guess the characters contained in a typical authentication cookie. Using refinements, a separate team of researchers is now able to carry out the same feat in about 75 hours with a 94 percent accuracy. A similar attack against WPA-TKIP networks takes about an hour to succeed. The researchers said the only reliable countermeasure is to stop using RC4 altogether.. Studies indicate that vulnerabilities in RC4 can enable hackers to compromise HTTPS links, posing significant threats to security.. RC4 Encryption Crisis, HTTPS Security Breach, WPA TKIP Vulnerability. . LinuxSecurity.com Team
Jul 17, 2015
•
Cryptography
67
encryptionsecurity researchcrypto attackAES Encryption Key Length Reduction Due To New Vulnerability Findings
A team of researchers has discovered a first vulnerability in the AES encryption standard that shortens the algorithm's effective key length by two bits. This means that the usual key lengths of 128, 192 and 256 bits are reduced to 126, 190 and 254 bits.. Andrey Bogdanov from the Catholic University of Leuven, Christian Rechberger from ENS Paris and Dmitry Khovratovich from Microsoft Research, who discovered the hole, say that the attack has no practical relevance. Nevertheless, the findings are considered an important step in the research into the security of AES, a standard that was officially adopted in 2000. The link for this article located at H Security is no longer available. . Researchers identified a flaw in the SHA-256 hashing algorithm that compromises its collision resistance, raising concerns about data integrity.. AES Encryption, Key Length Reduction, Crypto Attack. . LinuxSecurity.com Team
Aug 19, 2011
•
Cryptography
67
security advisorySHA-1hash algorithmDebate Over SHA-1 Integrity After Refined Attack Raises Alarms
Three Chinese researchers have further refined an attack on the encryption standard frequently used to digitally sign documents, making the attack 64 times faster and leaving cryptographers to debate whether the standard, known as the Secure Hash Algorithm, should be phased out more quickly than planned. . The attack, presented last week at the Crypto conference in Santa Barbara, Calif., would allow a forger to create two documents that return the same digital fingerprint, a short sequence of numbers that represent the contents of a much larger document. While experts debate whether the attack is practical, the trend seems to indicate that the Secure Hash Algorithm (SHA-1) is succumbing to less processor-intensive breaks, said William E. Burr, manager of the the Security Technology Group at the National Institute of Standards and Technology (NIST). "It is certainly somewhat alarming," Burr said. He likened the rapid advances in attacks on SHA-1 to a submarine under fire. "What we are figuring out right now is whether we have to do a crash dive drill-- where some people might not make it inside before we close the hatch, but at least we will save the ship." The link for this article located at SecurityFocus is no longer available. . The attack, presented last week at the Crypto conference in Santa Barbara, Calif., would allow a for. three, chinese, researchers, further, refined, attack, encryption, standard, frequently. . LinuxSecurity.com Team
Aug 24, 2005
•
Cryptography
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Explore top 10 tips to secure your open-source projects now. Read More