Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 2 articles for you...
83
cybersecuritycyber attackthreat managementCyber Attack Insights: Understanding Organizational Vulnerabilities
The Target and Home Depot breaches should've been wake-up calls. Instead, the bad guys remain free to wreak havoc everywhere. Last week I noted that most companies are either already hacked or could easily be hacked -- and, when they have anything worth stealing, are probably already owned by multiple APT (advanced persistent threat) groups.. This is a shock only to people who don't work on the front lines of the cyber war. The defenders fight this war poorly. If we were an actual army, the generals would be replaced far more often, and we'd have the right weapons in the right places. But we don't. The link for this article located at InfoWorld is no longer available. . This is a shock only to people who don't work on the front lines of the cyber war. The defenders fig. target, depot, breaches, should've, wake-up, calls, instead, remain. . LinuxSecurity.com Team
Sep 23, 2014
•
Hacks/Cracks
81
NSAintelligencecyber operationsUncovering NSA Cyber Operations at Fort Meade: Secrets and Strategies
Inside Fort Meade, Maryland, a top-secret city bustles. Tens of thousands of people move through more than 50 buildings. To block any telltale electromagnetic signals from escaping, the inner walls of the buildings are wrapped in protective copper shielding and the one-way windows are embedded with a fine copper mesh. The link for this article located at Wired is no longer available. . To block any telltale electromagnetic signals from escaping, the inner walls of the buildings are wr. inside, meade, maryland, top-secret, bustles, thousands, people, through. . LinuxSecurity.com Team
Jun 13, 2013
•
Privacy
78
security researchmemory safetycomputer securityMicrosoft Blue Hat Prize: $260K Contest For Memory Safety Innovations
Amid recent high-profile hacking attacks on government and corporate websites, Microsoft is offering a $260,000 (P11.026 million) reward for "Blue Hat" hackers who can think of creative ways to support computer security.. Microsoft launched the Blue Hat Prize contest this week to encourage "new ideas" for defensive approaches to support computer security. "As part of our commitment to a more secure computing experience, we hope to inspire security researchers to develop innovative solutions intended to address serious security threats," it said. The inaugural contest urges security researchers to design a "novel runtime mitigation technology" to prevent the exploitation of memory safety vulnerabilities.. Google initiated the Green Shield Challenge to promote innovative solutions for combating cybersecurity vulnerabilities.. blue hat prize, innovative security solutions, memory safety, security researcher, computer security strategies. . LinuxSecurity.com Team
Aug 04, 2011
•
Vendors/Products
82
cyber attacknational securitycyberwarfareExamining U.S. Cybersecurity Shortcomings Amid Strong Offensive Potential
Although the United States likely has the best cyberwar capabilities in the world, "that offensive prowess cannot make up for the weaknesses in our defensive position," one-time presidential advisor Richard Clarke argues in his forthcoming book Cyber War.. Clarke -- who served as special advisor to the president for cybersecurity in 2001 and now teaches at Harvard's Kennedy School for Government and works at Good Harbor Consulting -- fears that any outbreak of cyber warfare would spill over into more violent conflict. "Far from being an alternative to conventional war, cyber war may actually increase the likelihood of the more traditional combat with explosives, bullets and missiles," Clarke writes in his book, which is due out April 20. The link for this article located at Network World is no longer available. . John Fisher cautions that the nation grapples with important vulnerabilities in cybersecurity, even though it boasts advanced offensive capabilities.. Cyber Warfare, National Security Risks, Cybersecurity Strategies, Defensive Strategies. . Anthony Pell
Apr 07, 2010
•
Government
72
network securitysecurity measurespatch managementEvolving Patching Strategies For Network Security Defenses
The race to plug network holes before attackers use them is running system managers ragged--so they're throwing up more barriers to stop intruders. In recent years, the common wisdom has been that keeping up-to-date on software patches is key to safeguarding a company's networks against viruses, worms and other pests. But with dozens of flaws being discovered each week, that approach has turned out to be a Herculean task. . "Five years ago, patch management was not a (priority) for operations people. But then the worms came out, and it was patch everything you can and as fast as you can," said Gerhard Eschelbeck, chief technology officer at Qualys, a security information provider. "Now we've entered a phase of being more selective about patching." These days, security professionals are returning to an older strategy, which calls for defensive measures on many levels of the network, from the gateway to the employee's PC.. Discover the journey of patch management, transitioning from immediate software updates to comprehensive strategies that bolster defenses against cyber vulnerabilities.. Patch Management, Network Security, Software Updates. . Benjamin D. Thomas
Jan 28, 2005
•
Firewalls
78
incident responsenetwork defensehacking techniquesInsights From SANS Training: Understanding Hacking And Defense
The underground world of the computer hacker may seem like a place where chaos rules, but the reality is there's a method to the hacker's perceived madness. And understanding that method is critical to knowing how best to respond to a skilled attacker. . Last fall, the SANS Institute offered three training courses that presented a step-by-step look at how criminal hackers operate and how organizations should respond. While the bad news is that the hacker underground remains as cunning and capable as ever, the good news is that the security community continues to gain an understanding of how hackers operate. I attended the SANS training and will pass along some of the crucial information provided. My notes from the sessions offer a look at how criminal hackers work. These lessons can give you the knowledge necessary to begin hardening your network against attacks. Although no two hacker exploits are the same, most follow a series of predictable steps that are designed to increase the hacker's chances of success, says Ed Skoudis, founder and senior security consultant at Intelguardians LLC, a Washington-based information security consulting firm and the primary SANS instructor in hacker techniques, exploits and incident handling. The link for this article located at Dan Verton is no longer available. . The SANS course offered valuable perspectives on recognizing cyber attack techniques and enhancing system security protocols.. Hacking Techniques, Cybersecurity Training, Network Defense. . LinuxSecurity.com Team
Jan 18, 2005
•
Vendors/Products
77
system securitybreach mitigationweb server compromiseInvestigating Web Server Breaches and Strategies for Defense
It depends upon the motive of the attacker. If you were targeted specifically, its possible the attacker will first attempt to hide their presence on the system, and then remain there quietly observing, altering files or using it as a . . . . It depends upon the motive of the attacker. If you were targeted specifically, its possible the attacker will first attempt to hide their presence on the system, and then remain there quietly observing, altering files or using it as a stepping stone to launch further attacks. If however you just happened to be running a specific un-patched piece of software, for which a vulnerability / exploit code was recently published, its likely your server was only compromised because it was an easy target. In this case your index page was probably renamed, and new one left in its place carrying some (relevant at the time) political message from the defacer. Along with the appearance of your page in its altered state, for all to see at one of the defacement mirror sites such as Zone-H or Delta 5 Security. The first scenario would require a custom response given the specific circumstances, which is why the second is usually preferable, leaving the systems administrator with a clear course of action: The link for this article located at RootSecure is no longer available. . Web server compromises vary based on attackers' motives, including financial gain, data theft, vandalism, ransomware, botnet creation, espionage, and SEO spam. Web Server Exploits, Cyber Attack Tactics, Server Security Measures. . LinuxSecurity.com Team
Apr 21, 2003
•
Server Security
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Explore top 10 tips to secure your open-source projects now. Read More