Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 15 articles for you...
81
authenticationLinux usersdevice securityGoogle Expands Passkey Support: Enhanced Authentication for Linux Users
In a bold move towards a future without traditional passwords, Google has introduced secure passkey sign-ins across almost all devices, including Windows, macOS, Linux, and Android. This change will revolutionize how users authenticate their identity online, providing a more secure and seamless experience. . While Apple’s iOS is next in line, this widespread rollout marks a significant milestone in the broader trend of passwordless authentication. Let's examine the security benefits passkeys offer over passwords and how you can get started with passkeys on Linux today! Understanding Passkeys vs. Passwords When evaluating the pros and cons of passwords and passkeys , it is important to highlight their distinct characteristics and advantages. Passwords are a universally accepted and understood authentication method, offering a straightforward approach for users. However, they come with significant drawbacks, such as susceptibility to brute force and phishing attacks, the necessity for users to remember complex characters, and the fact that even when stored as hashes, they can still be cracked with sufficient computational power. On the other hand, passkeys present a more secure alternative, notably resistant to phishing and brute force attacks. They provide a streamlined user experience, primarily using biometrics or device PINs for authentication, and their end-to-end encryption ensures that even companies like Google cannot access the key. Despite these advantages, passkeys currently have a limited rollout and require compatible devices, making them dependent on hardware for biometric authentication. How Do Hackers Crack Passwords? Hackers employ several methods to crack passwords, including: Brute Force Attacks : Involves systematically trying every possible combination until the correct one is found. Although effective, it requires significant computational power. Phishing : Deceptively obtaining user credentials by masquerading as a legitimate entity. Keylogging : Using malware to record keystrokes as users type their passwords. Most services store passwords as hashes—a one-way math function that converts plaintext to a fixed-length binary sequence. However, with enough computational resources, even hashed passwords can be cracked using brute force. How Do Passkeys Mitigate Risk? Passkeys mitigate these risks by eliminating the need for raw password strings. Since passkeys rely on device-specific cryptographic keys and biometrics, hacking attempts would require physical access to the user's device and biometric data, making remote attacks near impossible. Getting Started with Passkeys on Linux Ready to make the switch? Linux users can get started using passkeys to improve their online security and privacy by following these steps: Ensure Your System is Updated: Ensure your OS and Google Chrome are updated to the latest versions supporting passkeys. Set Up Google Password Manager: Use the built-in password manager in Chrome, setting a strong PIN for added securi ty. Enable Biometric Authentication: If your device supports biometrics, enable this in your system settings. Sync Across Devices: Log into your Google account and sync the passkeys across your devices. Security Considerations Although passkeys offer inherent security benefits, it is crucial to engage in the following security best practices when using them: Device Security: Ensure your device is secure from physical theft and unauthorized access. Strong PINs: If using a PIN instead of biometrics, ensure it is strong and unique. Regular Audits: Review your security settings to ensure they align with best practices. Our Final Thoughts on Passkeys vs. Passwords for Improved Security Google's move towards integrating secure passkey sign-ins across various devices signifies a pivotal step towards a passwordless future. By leveraging passkeys, users can enjoy a more secure, seamless authentication process thatdramatically reduces the risk of traditional password-related attacks. As we move further into this new era of cybersecurity, embracing technologies like passkeys will undoubtedly play a crucial role in protecting our digital identities. . Google's passkey initiative is a major leap for user authentication, especially benefiting Linux users by reducing vulnerabilities and enhancing security.. passkeys, Linux authentication, passwordless security, Google sign-in, cybersecurity. . Dave Wreski
Sep 26, 2024
•
Privacy
215
security advisoryUbuntuGNOMEUbuntu 22.10: GNOME Device Security Panel Excluded From Control Center
Coming with GNOME 43 is a "Device Security" panel within the GNOME Control Center. While intended to help ensure their system is protected, Ubuntu isn't onboard with this Device Security functionality yet and has stripped it out from their GNOME build for Ubuntu 22.10. . The GNOME Device Security area warns users if Secure Boot is disabled and other platform-related security settings that are less than ideal. This GNOME integration has been worked on by Red Hat engineers along with the lower-level platform checks tied into Fwupd and the like. Eventually the hope is this Device Security area could assist users in improving their security settings beyond just warning them over the current system state. This week Ubuntu 22.10's GNOME Control Center package (gnome-control-center) package patched out the Device Security panel entirely. The link for this article located at Phoronix is no longer available. . The latest security control center in GNOME is missing from Ubuntu 22.10, affecting user access to crucial system safeguarding functionalities.. GNOME Device Security, Ubuntu Security, Control Center Features, Secure Boot Status. . Brittany Day
Sep 11, 2022
•
Desktop Security
83
Linux toolembedded devicedevice securityTechniques For Hacking Embedded Linux Devices: Foscam C1 Overview
Embedded Linux devices are everywhere these days, and sooner or later, you’re going to want to poke around in one of them. But how? Learn the techniques and tools Felipe Astroza has used to hack the Foscam C1 security camera, which will work on a wide range of embedded Linux gadgets. . That’s where posts like this one from [Felipe Astroza] come in. While his work is focused on the Foscam C1 security camera, the techniques and tools he outlines here will work on all sorts of gadgets that have a tiny penguin at their core. Rather than trying to go in through the front door, [Felipe] starts his assault with the nuclear option: removing the SPI MX25L12835F flash chip from the camera’s PCB and dumping its contents with a Raspberry Pi. From there he walks through the use of different tools to determine the partition scheme of the chip and eventually extract passwords and other interesting bits of information from the various file systems within. . Investigate methods for breaching embedded Linux systems while analyzing the Foscam C1 surveillance camera employing advanced tactics.. Embedded Linux Hacking, Foscam C1, Device Security, Hacking Techniques, Linux Devices. . LinuxSecurity.com Team
Apr 21, 2021
•
Hacks/Cracks
79
security initiativebug bountydevice securityMicrosoft's $100K Bug Bounty For Securing Azure Sphere Technology
Researchers have three months to find problems in the software for net-connected devices like baby monitors and refrigerators. . Microsoft wants Azure Sphere to be a really secure foundation for internet of things devices like webcams and garage doors, so it's offering researchers up to $100,000 to find a way to break into the technology. Azure Sphere combines an approved processor with Microsoft's own customized version of Linux called Sphere OS and a security service to detect problems and issue updates. . Microsoft has introduced a substantial $100K initiative to attract bug hunters, enhancing Azure Sphere's security for smart home tech, showcasing its commitment to safeguarding IoT devices.. Azure Sphere Security,Bug Bounty Program,IoT Device Protection. . LinuxSecurity.com Team
May 08, 2020
•
Security Projects
67
data protectionencryptiondisk encryptionChallenges in Device Encryption and Securing Data on Personal Devices
Full disk encryption provides incredible data protection for personal devices. If you haven’t enabled FileVault on your Mac, Windows Device Encryption on your PC, or Android Device Encryption on your phone, please go do it now (iOS encrypts storage by default). It’s easy, efficient, and secure. You will likely never notice the difference in usage or performance. Seriously. This is a no-brainer. . Once enabled, device encryption prevents just about anyone from accessing device data. Unless a malefactor possesses both device and authentication credentials, the data is secure. Mostly. The link for this article located at Just a Theory - David E. Wheeler is no longer available. . Once enabled, device encryption prevents just about anyone from accessing device data. Unless a male. encryption, provides, incredible, protection, personal, devices, haven’t. . LinuxSecurity.com Team
Jun 27, 2019
•
Cryptography
78
cyber threatsmalwareanti-virusUnderstanding the Importance of Antivirus Software for Mac Devices
Apple’s devices are far better defended against malware and viruses than other platforms, but does this mean they don’t need anti-virus software? . I’ve lost track of the number of times Mac users have told me Macs don’t need virus protection because they are inherently more robust against such attacks. I’ve also lost count of how many security researchers have said that Apple devices are becoming more liable to being attacked as their market share grows. The link for this article located at ComputerWorld is no longer available. . Android gadgets typically enjoy a reputation for flexibility, yet evaluating the need for virus safeguards is crucial.. Apple Devices, Malware Defense, Anti-Virus Software, Device Protection. . LinuxSecurity.com Team
May 16, 2019
•
Vendors/Products
74
cyber threatsnetwork risksdevice securityInternet of Things Security Risks: Protecting Against Cyber Threats
Internet-connected technology, also known as the Internet of Things (IoT), is now part of daily life, with smart assistants like Siri and Alexa to cars, watches, toasters, fridges, thermostats, lights, and the list goes on and on.. But of much greater concern, enterprises are unable to secure each and every device on their network, giving cybercriminals hold on their network hostage with just one insecure device. The link for this article located at The Hacker News is no longer available. . Businesses face challenges in safeguarding their IoT gadgets, exposing themselves to cyber risks and weaknesses in their networks.. Internet of Things Security, Device Protection, Network Threats. . Brittany Day
Apr 16, 2018
•
Network Security
83
remote exploitationinternet threatdevice securityGas Stations Across U.S. Expose 5,000 ATGs to Online Security Risks
Over 5,000 devices used by gas stations in the U.S. to monitor their fuel tank levels can be manipulated from the Internet by malicious attackers.. These devices, known as automated tank gauges (ATGs), are also used to trigger alarms in case of problems with the tanks, such as fuel spills.. Over 5,000 automated tank monitors at U.S. fueling stations face potential cyber threats, endangering safety protocols.. automated tank gauges, internet security, remote attacks, gas station safety. . LinuxSecurity.com Team
Jan 23, 2015
•
Hacks/Cracks
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Explore top 10 tips to secure your open-source projects now. Read More