Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 4 articles for you...
76
network securitycyber threatssecurity strategiesCISA Red Team Assessment: Strengthening Cyber Defense Strategies
The Cybersecurity and Infrastructure Security Agency (CISA) recently conducted an in-depth Red Team Assessment (RTA) to enhance cybersecurity in US critical infrastructure sectors . One critical infrastructure organization requested this assessment, which took roughly three months. Its primary purpose was to test its cybersecurity detection and response capabilities by simulating real-world threat scenarios similar to what might be encountered by potential cyber adversaries. . The Red Team Assessment (RTA) was carefully created with several specific goals. One key objective was to gauge an organization's cybersecurity readiness by testing its ability to detect and respond to malicious cyber activities while simulating real-world threats and sophisticated attack tactics employed by potentially malicious actors. Through simulation, the RTA sought to identify vulnerabilities within its network, precisely weaknesses that require improvement, and provide actionable insights and strategies to boost security measures against potential threats. In this article, I'll examine how this RTA was conducted, technical considerations impacting Linux admins, notable findings from the assessment, and CISA's suggested mitigation strategies for organizations looking to improve their cybersecurity posture. Understanding the Conduction of This Red Team Assessment CISA's Red Team Assessment (RTA) involved several phases. First, the red team conducted reconnaissance by gathering open-source intelligence about an organization's network, defensive tools, and personnel. They then attempted spearphishing campaigns where targeted emails were composed and sent out to gain entry, though these attempts proved initially ineffective. Red Team eventually entered the organization by exploiting an expired web shell from a third-party security assessment discovered during the survey of its external IP space. Once they gained initial access, the red team quickly escalated privileges. It moved from the demilitarized zone(DMZ) into the internal network, eventually breaching it using misconfigured resources and inadequate defense measures, giving it access to sensitive business systems. Technical Considerations Affecting Linux Admins Timeline of Red Team Cyber Threat Activity (Source: CISA) Red Team Assessment gave Linux administrators critical technical details that underscored its value. Initial access gained via exploiting an existing vulnerability on a web server highlighted the necessity for regular patching and monitoring web-facing services. Credentials were also discovered due to an improperly configured Network File System (NFS) share, underlining the importance of employing secure configuration practices. Red Team's use of multiple implants across various hosts also exposed the importance of thorough network traffic inspection and robust host-based defenses to detect and neutralize persistent threats efficiently, underscoring the importance of proactive security measures within Linux environments. Examining the Red Team Assessment Discoveries & Remarkable Findings CISA's Red Team Assessment revealed several notable findings. A significant issue related to deficient technical controls within an organization is their overreliance on host-based endpoint detection and response solutions while neglecting comprehensive network-layer defenses. CISA identified that staff had insufficient training. Ongoing IT personnel training is essential to creating secure environments and quickly detecting threats. Leaders' failure to prioritize vulnerabilities identified by the cybersecurity team showed a disparity between risk assessment and impact evaluation, necessitating an all-encompassing and proactive cybersecurity program within the organization. These results underscore the necessity of an ardent stance against cybersecurity within any business entity. CISA's Suggested Mitigation Strategies CISA proposed various mitigation strategies to address the issues identified. They proposed strengthening networklayer security by implementing robust defenses to supplement existing EDR solutions and enhance threat detection and mitigation capabilities. They also stressed the significance of continuing training and resources, advocating for investments in staff education to boost technical competencies, familiarity with system components, adequate management support for cybersecurity teams, and engaging leadership to participate in proactive risk evaluation and management activities. CISA also stressed the necessity o f secure software development , encouraging software manufacturers to adopt secure coding practices, integrate security into their architecture design, and eliminate default passwords. They further recommended mandating multi-factor authentication (MFA) for privileged users using phishing-resistant methods to defend against unauthorized access. Such recommendations demonstrate that organizations and software manufacturers share equal responsibility to ensure that systems can stand up against evolving threats. Our Final Thoughts on CISA's RTA Initiative The CISA RTA provides invaluable insights into critical infrastructure organizations' cybersecurity readiness. It offers technical and organizational improvements emphasizing technical vulnerabilities, and CISA recommends mitigation strategies to strengthen cyber defenses against adversarial infiltration or data compromise attempts. As threats evolve, ongoing assessments and enhancements remain vital in protecting national critical infrastructure against growing cyber risks. . CISA's RTA offers essential guidance for enhancing cyber stability in infrastructure entities while reducing potential threats.. Red Team Assessment,CISA,cyber defense,strengthening security,infrastructure challenges. . Brittany Day
Nov 27, 2024
•
Organizations/Events
79
cyber resiliencesecurity projectssupply chain security8 Key Initiatives Strengthening Open-Source Security in 2022
Open-source security has been high on the agenda this year, with a number of initiatives, projects, and guidance launched in 2022 to help improve the cyber resiliency of open-source code, software and development. . Vendors, tech firms, collectives and governments have contributed to helping raise the open-source security bar amid organizations’ increasing use of and reliance upon open-source resources, along with the complex security risks and challenges that come with it. “2022 has intensified the necessary focus on the important topics of open-source security, including supply chain security. It has also accelerated efforts to identify what was left to do, and then start doing it. In sum: things are just getting started, but progress has been made,” David A. Wheeler, director of open-source supply chain security at the Linux Foundation, tells CSO. . Suppliers, software companies, organizations, and authorities are collaborating to bolster community-driven safety in the face of intricate dangers.. Open-Source Initiatives,Cybersecurity Projects,Development Guidelines,Supply Chain Security. . LinuxSecurity.com Team
Sep 25, 2022
•
Security Projects
82
network securitycyber defensethreat assessmentNATO Cyber Defense Insights: White-Hat Hackers Assess Threats
Cyber attacks around the world are becoming more frequent, alarming and complex. Our interconnected societies depend on new technologies, which are constantly being probed for vulnerabilities to exploit. NATO calls on the skills of cyber-security experts to assess its computer networks and takes measures to avert and defend against cyber attacks.. "I put myself in the mindset of a hacker and simulate cyber attacks so that I can identify potential weak points in our systems and then set up appropriate defences," explains Nuri Fattah, Senior Security Consultant, at the NATO Communications and Information Agency. The link for this article located at NATO is no longer available. . Nuri Fattah, an adept white-hat hacker, bolsters NATO's cybersecurity by conducting penetration tests, revealing weaknesses in critical systems and improving defenses against cyber threats. NATO Defense,Cybersecurity,Penetration Testing. . Dave Wreski
Jun 06, 2013
•
Government
79
cyber resilienceemerging threatsfuture trendsExploring Future Security Trends: Chaos Theory and New Threats
Tom Espiner surveys the security landscape for the shape of things to come. When my editor asked me to predict what would happen to security over the coming year, and over the next 10 years, my heart sank. The permanency of internet publishing, caching and so forth means predictions have a habit of coming back to haunt you.. Plus, I'm a firm believer in chaos theory and the natural entropy of any system. So any detailed prediction is unlikely to come true The link for this article located at ZDNet UK is no longer available. . Explore the evolving landscape of security dynamics in the forthcoming ten years, emphasizing the principles of chaos theory, adaptability, and emerging vulnerabilities.. Security Predictions, Future Trends, Cyber Resilience, Emerging Threats. . LinuxSecurity.com Team
Dec 29, 2009
•
Security Projects
78
cyber resiliencevirtualizationnetwork simulationExplore Virtualization for Cisco and Linux Network Security
I'm a big fan of virtualization software. The main benefits come from having a pristine duplicate testing environment in every case, ease of portability, as well as (lack of?) hardware costs. These are essential features in anyone's network analysis toolbox and helps to expose any vulnerabilities in architecture. Read on for some interesting virtualization schemes for Cisco routers and Linux networks and start hammering away at your "what if?"s rather than theorizing them. . The link for this article located at Nirlog.com is no longer available. . Investigate the various virtualization strategies implemented in Cisco routing devices and Linux network systems to identify potential vulnerabilities comprehensively.. Network Simulation, Linux Virtualization, Cisco Testing, Cyber Resilience, Architecture Issues. . LinuxSecurity.com Team
Jul 11, 2007
•
Vendors/Products
82
network securitycritical infrastructureinformation sharingOverview of Homeland Security's Network Initiative for Cyber Safety
The White House and the new Department of Homeland Security have begun in earnest the process of implementing the plan to secure the nation's critical networks--starting with extensive changes in the federal security infrastructure. . . .. The White House and the new Department of Homeland Security have begun in earnest the process of implementing the plan to secure the nation's critical networks--starting with extensive changes in the federal security infrastructure. The most significant move is the development of a private, compartmentalized network that will be used by federal agencies and private-sector experts to share information during large-scale security events, government officials said at the National Information Assurance Leadership conference here last week. The system is part of the newly created Cyber Warning Information Network, a group of organizations including the National Infrastructure Protection Center, the Critical Infrastructure Assurance Office and others that have some responsibility for the security of federal systems. The private-sector Information Sharing and Analysis Centers will also be included. The link for this article located at eWeek is no longer available. . The White House and the new Department of Homeland Security have begun in earnest the process of imp. white, house, department, homeland, security, begun, earnest, process. . Anthony Pell
Mar 11, 2003
•
Government
82
national securitycritical infrastructurecyber resilienceKenneth Minihan Advocates for Toughening U.S. Critical Infrastructure
Retired Air Force Lt. Gen. Kenneth Minihan, former director of the National Security Agency, may have left government work a few years ago, but he is still focused on "toughening" the nation's critical infrastructure. . .. Retired Air Force Lt. Gen. Kenneth Minihan, former director of the National Security Agency, may have left government work a few years ago, but he is still focused on "toughening" the nation's critical infrastructure . Minihan, now principal at the Paladin Capital Group's Homeland Security Fund, said the United States is in the midst of a multidecade struggle with terrorism and natural disasters, and must invest in solutions designed to "protect, defend, cope and recover" its critical infrastructure assets. "The context of the fund is the toughening of the critical infrastructure of the U.S. and its strategic partners...so that when we're attacked again -- and we will be -- that we'll be OK," Minihan said. "We need to fix the equivalent of a flimsy cockpit door in the" information technology infrastructure. The link for this article located at FCW is no longer available. . Kenneth Minihan highlights the importance of strengthening American infrastructure to prepare for potential terror threats and calamities.. Critical Infrastructure, Cyber Resilience, National Defense, Strategic Infrastructure, Security Investments. . Anthony Pell
Jan 14, 2003
•
Government
82
crisis managementmilitary technologycyber resilienceDOD Plans Virtual Pentagon For Crisis Continuity After Sept. 11
In the wake of the Sept. 11 terrorist attacks, the Defense Department is developing plans for a "virtual Pentagon" that would enable DOD officials to continue to work even in the event of a large scale attack on the Pentagon, senior . . . . In the wake of the Sept. 11 terrorist attacks, the Defense Department is developing plans for a "virtual Pentagon" that would enable DOD officials to continue to work even in the event of a large scale attack on the Pentagon, senior military information technology officials said. The plans, which are referred to either as the "virtual Pentagon" or the "distributed Pentagon," are a significant redesign of DOD's IT contingency plans, which were found to be inadequate as a result of the crash. The link for this article located at FCW is no longer available. . In response to the events of September 11, the Department of Defense initiated the creation of a digital Pentagon aimed at maintaining operational continuity during emergencies.. Cybersecurity, Military IT, Attack Resilience, DOD Operations, IT Security. . Anthony Pell
Oct 31, 2001
•
Government
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Explore top 10 tips to secure your open-source projects now. Read More