Security Vulnerabilities 
malware linux
malware linux IronWorm steals credentials and uses them to spread beyond the original victim, turning developer access into a supply chain risk. . A new campaign targeting npm has evolved past simple credential theft. Researchers identified IronWorm, a self-spreading threat. It harvests high-value Linux development secrets—SSH keys, cloud tokens, package publishing credentials. One compromised workstation becomes a launchpad for downstream supply chain attacks. This is not a get-in-and-get-out operation....
Jun 08, 2026
Network Securitysystem security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 0 articles for you...
76
security insightscybersecurity collaborationDefconEngagement of Federal Agents with Hackers at Defcon Conference
WHY are federal agents hobnobbing with hackers? Defcon, a convention of computer hackers here, was crawling with them on Friday. They smiled, shook hands, handed out business cards, spoke on a panel called . Naturally, federal agents have been hanging out at hacker gatherings for years to snoop. The link for this article located at NY Times is no longer available. . Explore the reasons behind the alliance between federal law enforcement and hackers at gatherings such as Defcon to gather valuable cybersecurity intelligence.. Hacker Events, Cybersecurity Insights, Federal Agents, Defcon Conference. . Anthony Pell
Aug 08, 2011
•
Organizations/Events
82
law enforcementinternet crimecybersecurity collaborationFBI Urges Hackers To Partner Against Organized Cybercrime Efforts
The FBI's point man for Internet crime wants hackers to join the fight against international gangs of Web mobsters. Dan Larkin, unit chief of the FBI's Internet Crime Complaint Center, used the spotlight of the Black Hat security conference here to call for a new level of trust and cooperation between security researchers and law enforcement, warning that online crime is being controlled by "very sophisticated, very organized" attackers. . "More often than not, valuable information ends up in your hands before it gets to us," Larkin told a standing room only gathering of security professionals. "We need to leverage your capabilities and your strengths. You have to be able to tap into us. We have to figure out how to team up and be better partners," he added. The link for this article located at eWeek is no longer available. . The Bureau advocates for partnerships between cyber experts and police forces to tackle advanced internet criminal syndicates.. Hacker Community, Internet Crime, Cybersecurity Collaboration, Law Enforcement Partnership. . Brittany Day
Aug 02, 2006
•
Government
82
critical infrastructureinformation sharingcybersecurity collaborationSenate Hearing: Trust and Security in Critical Infrastructure Management
The private sector manages more than 85 percent of the nation's critical infrastructure and must therefore collaborate with the government to protect those resources, officials said at a Senate hearing last week. . . .. The private sector manages more than 85 percent of the nation's critical infrastructure and must therefore collaborate with the government to protect those resources, officials said at a Senate hearing last week. Such collaboration requires an environment conducive to companies voluntarily sharing vital information and a cultural change on both sides that will take time, said government and industry leaders speaking at a May 8 Senate Governmental Affairs Committee hearing. If this doesn't change, numerous gaps in homeland security will remain open to attack. Sens. Robert Bennett (R-Utah) and Jon Kyl (R-Ariz.) are promoting the Critical Infrastructure Information Security Act to enable the federal government and industry to share information about potential threats to the nation's critical infrastructure without fear that the data would be released under the Freedom of Information Act (FOIA). The link for this article located at FCW is no longer available. . Partnership is crucial since the public domain manages 75% of urban development for enhanced safety.. Critical Infrastructure, Information Sharing, Government Collaboration, Security Legislation, Cybersecurity. . Anthony Pell
May 13, 2002
•
Government
76
law enforcementethical hackingcybersecurity collaborationBlack Hat 2023: Hackers Collaborate With Officials on Internet Security
Hackers, computer security managers and law enforcement officials teamed up at this week's Black Hat Briefings conference to discuss their respective roles in securing the Internet and to urge attendees who engage in hacking activities to stay on the right side . . . . Hackers, computer security managers and law enforcement officials teamed up at this week's Black Hat Briefings conference to discuss their respective roles in securing the Internet and to urge attendees who engage in hacking activities to stay on the right side of the law. "The elite are not those who destroy or cause havoc in cyberspace, but rather [those who work] to protect the Net," said Kevin Manson, a senior instructor at the Federal Law Enforcement Training Center's Financial Fraud Institute, during a keynote speech yesterday morning at the fourth annual Black Hat gathering. Even the Attrition.org hacking group, which had run-ins with legal authorities in the past, discussed the legal and ethical lessons that were learned during the three years it posted mirror images of Internet defacements on its Web site. Attrition.org members offered plenty of advice about how to stay within the bounds of the law, even if authorities don't like what you do. The link for this article located at Computer World is no longer available. . Cybersecurity experts and police representatives teamed up at DEF CON to explore safeguarding the web and adhering to legal standards.. Hacking Practices,Cybersecurity Trends,Legal Implications,Internet Defense,Ethical Hacking. . Anthony Pell
Jul 16, 2001
•
Organizations/Events
82
cyber threatslegislationnational securityRep. Tom Davis's Push For Cybersecurity Collaboration Legislation
Rep. Tom Davis (R-Va.) reintroduced July 10 a bill aimed at encouraging the private sector to share cybersecurity incidents with federal agencies so the government has a better picture of threats to national security. Davis and co-sponsor Rep. Jim Moran . . . . Rep. Tom Davis (R-Va.) reintroduced July 10 a bill aimed at encouraging the private sector to share cybersecurity incidents with federal agencies so the government has a better picture of threats to national security. Davis and co-sponsor Rep. Jim Moran (D-Va.) first introduced the bill last year after the formation of several private-sector information sharing and analysis centers (ISACs). The link for this article located at FCW is no longer available. . Congressman Tom Davis reintroduces legislation aimed at enhancing cooperation on cybersecurity matters between private companies and government entities.. Cybersecurity Legislation,Federal Agency Collaboration,Threat Sharing. . Anthony Pell
Jul 11, 2001
•
Government
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More