Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 1 articles for you...
83
cybercrimeforensicsonline threatsUnderstanding Online Criminals' Tactics to Evade Detection
Forensic investigations start at the end. Think of it: You wouldn't start using science and technology to establish facts (that's the dictionary definition of forensics) unless you had some reason to establish facts in the first place. But by that time, the crime has already happened. So while requisite, forensics is ultimately unrewarding. . The link for this article located at CIO.com is no longer available. . Cybercriminals use advanced tactics like encryption and the dark web to evade law enforcement, masked by VPNs and TOR for anonymity in their operations. Cybercrime Techniques, Digital Threats, Forensic Investigations. . LinuxSecurity.com Team
Jun 06, 2007
•
Hacks/Cracks
82
computer investigationcybercrimedigital evidenceInside the DoD Crime Lab: Analyzing Cyber Evidence for Justice
Digital evidence comes in all shapes and sizes: pallets full of computers, a hard drive with an AK-47 bullet hole in it, audio tapes fished out of the ocean, mangled floppies, garbled 911 calls. Whenever U.S. government agencies investigating a crime or a cybercrime has digital evidence that's too difficult to analyze, they send it to the Department of Defense computer forensics lab. . . .. Digital evidence comes in all shapes and sizes: pallets full of computers, a hard drive with an AK-47 bullet hole in it, audio tapes fished out of the ocean, mangled floppies, garbled 911 calls. Whenever U.S. government agencies investigating a crime or a cybercrime has digital evidence that's too difficult to analyze, they send it to the Department of Defense computer forensics lab. The evidence can arrive in a military vehicle, via FedEx or through the U.S. Postal Service. However it gets there, it's accepted at the loading dock of an unmarked commercial building on the outskirts of Baltimore. It's then logged and sent to an evidence custodian, who inventories, tags and stores it in a locked cage. Network World was invited into the Defense Computer Forensics Lab (DCFL) for an inside look at how computer investigators at the cutting edge are using digital evidence to help solve crimes. The purpose of the lab is to analyze evidence gathered at crime scenes involving the military. Whatever crimes occur in the civilian world, you also see in the military. It could be homicide, child pornography, identity theft, counterfeiting, misconduct, terrorism, espionage, contractor fraud or misuse of government property. With these crimes, there's often digital evidence in cell phones, pagers, PDAs, geo-mapping systems, digital cameras, cockpit recording systems and anything else with flash memory or ROM. "We estimate that 95% of criminals leave digital evidence at the scene," says Donald Flynn, attorney adviser for the Defense Department Cyber Crime Center, which houses the DCFL. That evidence must be able to stand up in court,particularly now that judges and attorneys are becoming savvy enough to start asking questions about the integrity of digital evidence. The DCFL addresses this through rigorous training and advanced tools such as certified, high-capacity extraction and imaging processes and tools. Inside the lab My tour guide at the high-security lab pushed a button at the double-door entryway into the lab that triggered blue ceiling lights, which blinked incessantly to alert technicians that unclassified visitors were on the premises. The lab includes your standard office cubicles, but every cube is outfitted with state-of-the-art processors, multi-system server stacks and 42-inch flat-screen monitors. "Some of the evidence comes in on pallets - cases full of servers, CPUs, RAID disk arrays, floppy diskettes, Palm Pilots, digital cameras," says special agent Bob Renko, director of operations for the lab. "We've even gotten evidence in buckets of water - for example, video tapes recovered from jets crashing into the sea during training exercises." The link for this article located at nwfusion.com is no longer available. . Digital evidence comes in all shapes and sizes: pallets full of computers, a hard drive with an AK-4. digital, evidence, comes, shapes, sizes, pallets, computers, drive. . Anthony Pell
Mar 11, 2004
•
Government
81
forensicscomputer crimedigital evidenceUnderstanding Trojan Defense Risks in Cyber Crime and Forensics
In October, 2002 Julian Green was arrested in Devon, England after police searched his home PC and found examples of child pornography. ISP had logs identified Green as the person responsible for the downloads, and the existence of the child porn on his PC seemed to be all the corroboration the constable would have needed to obtain a conviction. However, a defense forensic expert also found evidence that there were Trojans planted on Green's computer that were designed to piggyback his browser, and log into porn sites. The Trojans probably were downloaded as e-mail attachments -- made all the more likely by the fact that Green had a teenage son. Unable to definitively prove that Green knowingly and intentionally downloaded the files, the prosecution dismissed the charges. . . .. According to Greek mythology, the seer Laocoon, a priest of Apollo, warned the residents of Troy against accepting into their city the giant wooden horse designed by Odysseus and created by the architect Epeius. His famous warning, "Trojans, trust not the horse. Whatever it be, I fear the Greeks, even when bringing gifts," applies equally today to importing unknown files as it did to the Trojans 4,000 years ago. We think we know all about the dangers of Trojan horses, but there is a new and more dangerous legal wrinkle to consider. In the past few months, a couple of people in England were acquitted based upon the so-called "Trojan defense" -- what we criminal lawyers used to call the "SODDI" defense: Some Other Dude Did It. The Trojan defense presents two equally frightening problems: the possibilities of acquitting the guilty, or convicting the innocent. In the first case, given the nature of electronic evidence, virtually all computer crime prosecutions rely on "circumstantial" evidence. To prove that John Doe, for example hacked into ABC company, you collect IP history logs and other corroborating data, maybe engage in an IRC chat with John Doe, get a warrant or subpoena for his ISP information, show a pattern of activity consistentwith the hacking, and then (if you are a law enforcement agent) get a warrant to kick in Mr. Doe's door and seize his computer. If the forensic examination of the computer shows hacking files, access to hacking sites, relevant e-mail, and even versions of the malicious code, it's a slam-dunk case for conviction. Right? But what if, in addition to all of this "evidence," you also find the existence of a Trojan horse server -- say, a version of Optix Pro or another remote access program. Does the mere existence of such a program provide a Get Out of Jail Free card? Probably not. However, given the ephemeral nature of electronic evidence, and the fact that it can always be altered, how confident would you be that Doe was in fact guilty beyond a reasonable doubt? The higher the hacker's profile, the more attractive a target he or she may make for other hackers. And after all, if you were a hacker, would you want to store your contraband files on your own machine, or, like the cuckoo, would you keep your eggs in another bird's nest? Such "file parking" strategies have been used by hackers for years. The link for this article located at SecurityFocus is no longer available. . The Trojan defense in electronic crime cases challenges the validity of circumstantial evidence, revealing how malware can mislead on culpability in legal settings. Trojan Defense, Digital Security, Forensic Evidence, Computer Crime, Cybersecurity. . LinuxSecurity.com Team
Jan 21, 2004
•
Privacy
82
cybercrimelaw enforcementdigital evidenceFBI: New Computer Forensics Lab For Cybercrime Investigation
The FBI is creating a $3 million computer forensics lab in Silicon Valley, using the latest imaging software and high-end computers to sleuth for cyber-clues of child pornography, corruption, murder and more. . .. The FBI is creating a $3 million computer forensics lab in Silicon Valley, using the latest imaging software and high-end computers to sleuth for cyber-clues of child pornography, corruption, murder and more . The 12,000-square-foot Regional Computer Forensics Laboratory, at the foot of the Dumbarton Bridge in Menlo Park, will be available to help detectives from San Francisco, San Mateo, Santa Clara and Alameda counties hunt for digital clues. Investigators can bring seized computers and disks to be searched for incriminating e-mails, encrypted documents and other evidence within hardware or software. Labs like these are popping up around the country in response to what investigators are saying is an exponentially growing mass of new case evidence to be analyzed. The link for this article located at Mercury News is no longer available. . The FBI is creating a $3 million computer forensics lab in Silicon Valley, using the latest imaging . creating, million, computer, forensics, silicon, valley, using, latest, imaging. . Anthony Pell
Oct 16, 2002
•
Government
82
computer crimedigital evidencecybercrime investigationFBI's New Forensics Office Aims to Combat Computer-Related Crimes
The FBI has opened its first multiagency, multijurisdictional office aimed at combating the escalation of computer-related crimes and has assigned it the task of acquiring, archiving and analyzing digital evidence in support of criminal investigations. The new facility, located in San . . . . The FBI has opened its first multiagency, multijurisdictional office aimed at combating the escalation of computer-related crimes and has assigned it the task of acquiring, archiving and analyzing digital evidence in support of criminal investigations. The new facility, located in San Diego, is designed as a prototype for new regional laboratories being established across the country. "The role of the computer forensics examiner will become increasingly more important as criminals continue to exploit emerging computer technology," says FBI Director Louis J. Freeh. "As we have found on the national level, joining forces with other federal, state and local agencies produces higher levels of service in the full range of cases where computers are either used to facilitate crime or the computer itself is the target of a criminal act," he says. Attorney General Janet Reno has called for an aggressive effort to combat computer crimes, saying government and industry need to work together to determine what should be done both to increase security and to catch criminals. The link for this article located at Lexis-Nexus is no longer available. . The CIA's latest interdepartmental unit aims to combat the surge of cybercrimes employing cutting-edge investigative techniques.. FBI Forensics Office, Digital Crime Prevention, Cybercrime Solutions. . Anthony Pell
Nov 28, 2000
•
Government
74
data recoveryforensic analysisdigital evidencePioneering Federal Computer Sabotage Case Resulting Conviction
How a Secret Service agent, a data recovery expert and a federal prosecutor team to secure the first ever conviction on federal computer sabotage charges. "Lloyd, a former network administrator at Omega Engineering Corp., thought he had not only destroyed his former employer's manufacturing capabilities, but also had destroyed the evidence that would link him to the crime as well.. . .. How a Secret Service agent, a data recovery expert and a federal prosecutor team to secure the first ever conviction on federal computer sabotage charges. "Lloyd, a former network administrator at Omega Engineering Corp., thought he had not only destroyed his former employer's manufacturing capabilities, but also had destroyed the evidence that would link him to the crime as well. The one thing Lloyd didn't count on was that there were investigators with enough computer savvy to put the pieces of what prosecutors described as his "elaborate and Machiavellian plan" back together and trace the evidence to Lloyd's own doorstep." The link for this article located at NW Fusion is no longer available. . Federal Bureau, a digital forensic specialist and attorney confront initial national cyber sabotage lawsuit.. Computer Sabotage,Federal Prosecution,Cybercrime Investigation,Data Recovery,Digital Evidence. . Anthony Pell
Jun 26, 2000
•
Network Security
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Explore top 10 tips to secure your open-source projects now. Read More