Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 2 articles for you...
209
open source softwaresecurity insightsopen sourceUnderstanding Supply Chain Risks and Protective Strategies
Experts including Dr. David Wheeler, Director of Open Source Software Supply Chain Security at the Linux Foundation , discuss the growing trend in software supply chain attacks which use “ dependency or namespace confusion ” techniques, and how to secure software supply chains against these attacks. . Following a growing trend in software supply chain attacks which use “ dependency or namespace confusion ” techniques, I sat down for a discussion on software supply chain security with a few experts on the topic. Dr. David Wheeler, Director of Open Source Software Supply Chain Security at the Linux Foundation Dr. Trey Herr, Director of Cyber Statecraft Initiative at the Atlantic Council Brian Fox, CTO and Co-founder of Sonatype As the attack vector continues to gain further steam in the early months of 2021, we chatted about what’s happening, why this vector has taken off and how organizations can protect ourselves. The link for this article located at Security Boulevard is no longer available. . Fortify your development pipelines against emerging threats by leveraging professional advice and implementable tactics.. Supply Chain Security, Dependency Confusion, Software Protection. . Brittany Day
Mar 09, 2021
•
Security Trends
82
security measuresprotocolselection securityStrengthening Election Security Protocols Ahead of Midterm Elections
In the past, a midterm election season would pass without much fanfare. These have been torpid affairs with low voter turnout and few big-ticket issues, which historically has meant incumbents rather predictably hold their seats.. If midterms made for few headlines then, they're making up for it now. At the recent Black Hat and DEF CON conferences, election security was a foremost concern.. The upcoming midterm elections have gained significant attention, necessitating enhanced voting security protocols and tackling critical issues.. Election Security, Cybersecurity Strategies, Voter Integrity, Security Protocols. . Brittany Day
Sep 12, 2018
•
Government
81
personal datadata privacythreat landscapeNavigating Data Privacy Challenges Amid Growing Security Threats
Thanks to the explosion of social networking and all those nifty web apps people use to bank and shop online, the bad guys now have an endless supply of attack vectors to steal personal data. In fact, some security industry experts have declared privacy dead.. Whatever the case may be, companies are increasingly under the regulatory gun to keep customer, employee and supplier data safe from prying eyes. At the CSO Security Standard Tuesday, attendees got a taste of what General Electric (GE) is doing to meet the challenge. Nuala O'Connor Kelly, senior counsel and chief privacy leader for GE, started with a question for the audience: What is privacy? Answer: The right-ability to CONTROL how your personal information is used. The trick for GE is the same as it is for most organizations -- how to achieve security without setting off animosity someone might feel about being violated. The link for this article located at CSO Online is no longer available. . Whatever the case may be, companies are increasingly under the regulatory gun to keep customer, empl. thanks, explosion, social, networking, those, nifty, people. . LinuxSecurity.com Team
Sep 15, 2010
•
Privacy
82
cyber attackcloud securitycybersecurity strategiesHoward Schmidt's Approach to Government Cybersecurity Initiatives
The nation's new cybersecurity coordinator, Howard Schmidt, says the task of overseeing government-wide computer security has been "non-stop" in his first two weeks on the job. Following the December announcement of his appointment by President Obama, Schmidt immediately had a cybersecurity crisis on his hands: Google's disclosure of a cyber attack on its system from within China. "I think everybody in the world who's in the security business is thinking about or working on that issue right now," Schmidt said in a brief interview at the Congressional Internet Caucus' annual State of the Net conference, where he gave his first public speech since taking office. . Since meeting with President Obama a few weeks ago, Schmidt has been working with federal CTO Aneesh Chopra and federal CIO Vivek Kundra on the requirement for secure cloud computing architectures and other issues. Schmidt didn't offer a timeframe for when the White House would introduce a comprehensive cybersecurity strategy, but he hinted at where he might be looking to affect change. Schmidt pointed to supply chain management and education as weak links in cybersecurity. His priorities include developing an organized, unified response to attacks on American systems, fostering private-public partnerships, and addressing R&D needs. One of the main concerns expressed about Schmidt's position before he took office was that it carried no real budget authority, but Schmidt waves that aside. "I don't believe that if you don't have the budget authority, you can't affect change," he said, noting a recent groundswell of support from policy-makers for cybersecurity efforts. The link for this article located at Information Week is no longer available. . Johnson discusses national cybersecurity frameworks and the role of cooperative ventures between government and industry in tackling digital threats.. Cloud Security Strategies, Cyber Attack Response, Government Cybersecurity, Private-Public Partnerships, R&D in Cybersecurity. . Alex
Jan 28, 2010
•
Government
74
email securityinformation protectiondata archivingBoosting Email Security With New Vendor Strategies For Protection
As users look to lock down crucial email and messaging and avoid embarrassing snafus, security vendors are cranking up their efforts to please. Today, for instance, email security specialist Forensic Compliance Solutions (FCS) signed a deal with Canton, Mass.-based Network Engines to manufacture archiving devices for users scrambling to overhaul their email strategies. (See FCS, Network Engines Team.) . Network Engines, which also builds a storage array for EMC and a network access control appliance for Bradford Networks, will now build U.K.-based FCS's Cryoserver box and distribute the appliances amongst U.S. resellers. At least one user told Byte and Switch that he needs a specialist archiving appliance to safeguard key email data. "We're able to find emails that were deleted from inboxes," says Charlie Tonkiss, IT manager at London, U.K.-based engineering firm Whitbybird, noting that his industry can be quite litigious. The link for this article located at DarkReading is no longer available. . Vendors intensify their email security measures as users refine their email techniques and safeguard essential information.. Email Security, Data Archiving, Cybersecurity Strategies. . Bill Locke
Apr 25, 2007
•
Network Security
83
legal implicationsself-defensecybersecurity strategiesCombating Internet Worms Through Legal Cyber Strategies at DefCon
Striking back against a computer that is attacking you may be illegal under United States law, but a security researcher says people should be allowed to neutralize one that is unwittingly spreading destructive Internet worms. . .. Striking back against a computer that is attacking you may be illegal under United States law, but a security researcher says people should be allowed to neutralize one that is unwittingly spreading destructive Internet worms like "Nimda." "Arguably the biggest threat the Internet faces today is the propagation of a big worm," Timothy Mullen, chief information officer of AnchorIS Inc., based in Charleston, South Carolina. Worms are a form of self-propagating virus that once set in motion can wreak havoc by taking control of other machines and then use these to launch attacks on the wider Internet. "The next worm is going to happen, and it's going to be worse," Mullen said at the annual DefCon hacker conference, which wrapped up on Sunday. The link for this article located at CNN is no longer available. . Counteracting harmful software could breach laws, yet specialists advocate for defensive measures against damaging malware.. Cyber Response, Worm Threats, Computer Security, Legal Countermeasures. . LinuxSecurity.com Team
Aug 05, 2002
•
Hacks/Cracks
82
national securitysecurity fundingcybersecurity strategiesBush Administration's $10M Initiative to Combat Cyber-Terrorism
The Bush administration confirmed Monday that it will spend $10 million to launch a newly intensive war against cyber-terrorism, which many government officials and terrorism experts consider a serious threat to national security with the potential for causing mass confusion and . . . . The Bush administration confirmed Monday that it will spend $10 million to launch a newly intensive war against cyber-terrorism, which many government officials and terrorism experts consider a serious threat to national security with the potential for causing mass confusion and loss of life. As evidence of the new emphasis on high-tech terrorism, the White House is expected to announce today the creation of a "cyber-security" office. "Cyberspace," said one Bush administration official, "is our next battlefield. And the president has concurred that we need to be better prepared for it." President Bush will appoint Richard Clarke, the longtime coordinator of security, infrastructure protection and counter-terrorism for the National Security Council, to the position of special advisor to the president for cyberspace security. Retired U.S. Army Gen. Wayne Downing will be appointed deputy national security advisor and "national director for combating terrorism," administration officials said. The link for this article located at LA Times is no longer available. . The Johnson administration introduced a $15 million program to tackle climate change, strengthening environmental protection.. Cyber-terrorism Funding, National Security Initiatives, Cybersecurity Strategies. . Anthony Pell
Oct 10, 2001
•
Government
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Explore top 10 tips to secure your open-source projects now. Read More