Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 26 articles for you...
215
security featuresdata recoverydesktop environmentsSpiral Linux: Data Recovery Features and Security Benefits
Spiral Linux is a Debian-based distribution that offers a range of desktop environments, making it stand out from other Linux distributions. In addition, it comes with a unique tool called SnapperGUI , which simplifies the process of creating operating system snapshots. These snapshots serve as a data recovery solution, allowing users to revert to a previously working state easily. . While Spiral Linux may not provide as many bells and whistles as other distributions, it offers a solid foundation, numerous desktop options, and a powerful data recovery tool that sets it apart. What Sets Spiral Linux Apart From Other Distros Regarding Security? A main feature of Spiral Linux is SnapperGUI. This tool simplifies the creation of snapshots, allowing users to easily revert to a previous state if anything goes wrong. The importance of data recovery must not be overlooked and frustration can be avoided by having readily available snapshots. This is possible with Spiral Linux, making it an excellent choice for users prioritizing security and reliability. Moreover, long-term implications must be considered. While Spiral Linux provides a reliable backup option, the lack of scheduled snapshots raises concerns. Users must remember to manually take snapshots, which may be cumbersome for those who prefer automated solutions. This limitation leads to the question of whether Spiral Linux should consider incorporating scheduled snapshots to enhance its usability. The impact of Spiral Linux on security practitioners is significant. With most tasks being performed within a web browser, the distro provides the opportunity to switch to an exponentially more secure and flexible operating system. Security-conscious users will find the reliability and data recovery capabilities of Spiral Linux appealing, as it provides a safety net for protecting sensitive information. Our Final Thoughts on Spiral Linux Spiral Linux stands out among its competitors with its wide range of desktop environments and powerful datarecovery tool, SnapperGUI. While it may not offer the same level of customization as other distributions, its solid foundation and emphasis on security make it a reliable choice for security-conscious practitioners. You can download Spiral Linux here. . Spiral Linux provides a solid foundation with security features and data recovery solutions like SnapperGUI for users.. spiral, linux, debian-based, distribution, offers, range, desktop, environments, making. . Brittany Day
May 08, 2024
•
Desktop Security
83
cyber threatsransomwaredata recoveryRansomware Recovery: High-Cost Solutions and Exploitation of Victims
Being hit by ransomware must be bad enough when you don’t have a secure backup of your critical data that you can turn to. Just imagine how it feels to then be ripped off a second time by the data recovery firm you turn to for help in your moment of panic.. It seems there are firms out there who are charging ransomware victims a hefty premium for the safe return of your data - when all that’s actually happening is they are paying the ransom on your behalf. The link for this article located at GrahamCluley is no longer available. . It seems there are firms out there who are charging ransomware victims a hefty premium for the safe . being, ransomware, enough, don’t, secure, backup, critical. . LinuxSecurity.com Team
Apr 25, 2018
•
Hacks/Cracks
77
data managementdata recoverybackup strategyUtilizing RAID Arrays for Improved Strategies in Data Backup Solutions
How valuable is your data? If your storage drive crashed, would it ruin your day? Your week? Your entire career? Only you can answer those questions for yourself and your organization. But I'll tell you, personally, I need my files -- not only to get my day-to-day job done, but to reference older information and even look at personal keepsakes (like all my digital photos).. Over the years, I've discussed storage strategies a lot. I've talked about the traditional 3-2-1 backup approach, and what I call 3-2-1 off and away backups. I've talked about cloud backup, and how having most of my critical data in the cloud helped me keep going during last year's hurricane evacuation. I've even taken you through an in-depth torture testing of seven different RAID storage devices to find the winners (and losers).. Over the years, I've discussed storage strategies a lot. I've talked about the traditional 3-2-1 bac. valuable, storage, drive, crashed, would. . LinuxSecurity.com Team
Mar 15, 2018
•
Server Security
67
malwareransomwaredata recoveryDecryptCryptoLocker: Free Tool for CryptoLocker Ransomware Victims
FireEye and Fox-IT have launched a free tool to assist victims of the CryptoLocker ransomware. Announced on Wednesday, the new service, dubbed DecryptCryptoLocker, is available for free to assist those impacted by the CryptoLocker ransomware.. CryptoLocker is Windows-based malware that arrives on a system through means including phishing campaigns and watering hole attacks. The malware then aggressively infects the machine -- and in some cases, backups if mounted to such a system -- and encrypts the user's files. An onscreen timer then demands payment within 72 hours, typically around $300. If the victim pays up, they are sent a private key to unlock their files. The link for this article located at ZDNet Blogs is no longer available. . Struggling with ransomware issues? Check out the complimentary utility from Cybereason and Varonis designed to assist individuals in recovering their encrypted data.. Free Decrypt Tool, CryptoLocker Assistance, Ransomware Recovery. . LinuxSecurity.com Team
Aug 06, 2014
•
Cryptography
67
data breachdata recoverycybercriminalsCybercriminals Seek Assistance To Break 3DES Encrypted PINs
Underground cybercriminals are attempting to decrypt a 50GB dump of encrypted debit card PINs that security watchers reckon were lifted during last year's high profile breach against retail giant Target.. Security intelligence firm IntelCrawler reports that a miscreant claiming to be in possession of 50GB of PIN data secured with 3DES encryption posted a request for a hook-up with a PIN hacker on 3 January, offering a fee of $10 per line. IntelCrawler reckons the hacker is from Eastern Europe. The link for this article located at The Register UK is no longer available. . Security intelligence firm IntelCrawler reports that a miscreant claiming to be in possession of 50G. underground, cybercriminals, attempting, decrypt, encrypted, debit. . LinuxSecurity.com Team
Jan 14, 2014
•
Cryptography
67
encryption analysisdata recoveryBitLockerAccess Encrypted Volumes With Elcomsoft Forensic Disk Decryptor
The newly announced ElcomSoft Forensic Disk Decryptor can decrypt BitLocker, PGP, and TrueCrypt. And it's only $300. How does it work?. Elcomsoft Forensic Disk Decryptor acquires the necessary decryption keys by analyzing memory dumps and/or hibernation files obtained from the target PC. You'll thus need to get a memory dump from a running PC (locked or unlocked) with encrypted volumes mounted, via a standard forensic product or via a FireWire attack. Alternatively, decryption keys can also be derived from hibernation files if a target PC is turned off. The link for this article located at Schneier on Security is no longer available. . CleverSys' latest utility extracts decryption codes from RAM captures and sleep state archives for fortified access management.. Forensic Disk Decryptor, Disk Encryption, Access Control. . LinuxSecurity.com Team
Dec 31, 2012
•
Cryptography
83
malwaretrojanfile encryptionTrojan.Ramvicrype Threat: Monitor Encryption Without Ransom Note
Symantec is warning about a new Trojan horse that encrypts files on compromised computers but offers no ransom note like other software designed to hold data hostage for a fee.. Instead, a Web search for terms related to the Trojan horse leads to a company offering a way to remove the malware. The company offering the product used to charge for it but now offers it for free. Trojan.Ramvicrype uses the RC4 algorithm to encrypt files on systems running Windows 98, 95, XP, Windows Me, Vista, NT, Windows Server 2003 and Windows 2000, according to Symantec's Web site. Computers with files that have the .vicrypt extension are infected, a Symantec researcher wrote in a blog post this weekend. The link for this article located at CNET is no longer available. . Instead, a Web search for terms related to the Trojan horse leads to a company offering a way to rem. symantec, warning, about, trojan, horse, encrypts, files, compromised, computers, offers. . LinuxSecurity.com Team
Nov 03, 2009
•
Hacks/Cracks
79
data protectionsystem administrationdata recoveryAvoid These Crucial Backup Mistakes to Protect Your Data
Many of us were shocked last week that a company as prominent as Danger, Inc. could make such a rookie mistake by losing the data of T-Mobile's Sidekick customers. As a system administrator, if there is one thing you absolutely have to get right, it's backups. Here are six ways to botch them.. 1. Relying on RAID So you've made a smart decision by making sure that your company's data is on redundant disks. Disk arrays using RAID 1,5 and 6 can continue to function if a drive fails. Great, but what if you lose multiple drives due to a power surge, defective controller, fire, flood, or user error. What if the data becomes corrupt or is accidentally deleted. RAID is great for uptime, but it isn't even close to being a backup. 2. Relying on online media Perhaps you're taking advantage of the plethora of cheap, spacious external drives to backup your system. That's actually not a horrible idea if afterward you disconnect the drive and move it to an alternate location. However, keeping that backup online and connected is a bad idea. Imagine that your system becomes compromised by a virus or a hacker; all data on all connected drives could easily be erased. What if your power supply fries and it sends out a jolt that kills both internal and external drives? Keeping your backup hard disk away from you system minimizes the risk of a single problem wiping out all your data. The link for this article located at CIO Magazine is no longer available. . To ensure your organization's data is safeguarded, avoid common backup mistakes like neglecting regular schedules and testing restorations, as well as limiting locations. Backup Strategies, Data Recovery Techniques, System Admin Tips. . LinuxSecurity.com Team
Oct 29, 2009
•
Security Projects
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Explore top 10 tips to secure your open-source projects now. Read More