Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 0 articles for you...
83
security issueweb applicationbrute forceBrute Force Attack Exposes 114,000 iPad Email Addresses via AT&T
The harvesting of over 100,000 iPad 3G owners' e-mail addresses was not a hack or a classic data breach, but a brute force attack of a minor feature AT&T offered to Apple customers, experts said Wednesday.. According to New York-based Praetorian Security Group, which obtained a copy of the PHP script used to scrape e-mail addresses from AT&T's servers, the attack succeeded because the mobile carrier used poorly-designed software. A nine-person hacking group known as Goatse Security claimed responsibility for the script, which amassed 114,000 e-mail addresses. "There's no hack, no infiltration, and no breach, just a really poorly-designed Web application that returns e-mail address when ICC-ID is passed to it," Praetorian said in a late Wednesday entry on its security blog . The link for this article located at Network World is no longer available. . Authorities disclose that more than 100,000 iPhone contact details were collected as a result of a software vulnerability, rather than a security incident.. Brute Force, Email Harvesting, Web Application, AT&T Security. . LinuxSecurity.com Team
Jun 10, 2010
•
Hacks/Cracks
81
risk managementlinux administrationemail harvestingManaging Email Harvesting Risks on Twitter for Linux Administrators
Not necessarily Linux related, but how are Linux admins dealing with social networks and the risks to their users? Spammers are no strangers to the ever-growing Twitter. From commercial Twitter spamming tools, to re-tweeting trending topics for delivering their message, a new crafty search technique can provide spammers with fresh and valid emails harvested from Twitter. The result? A flood of valid and fresh email addresses of Twitter users unaware that their emails will not only get indexed by public search engines, but also, that the output can be syndicated for spamming purposes. The link for this article located at ZDNet is no longer available. . The result? A flood of valid and fresh email addresses of Twitter users unaware that their emails wi. linux, necessarily, related, admins, dealing, social, networks, risks. . LinuxSecurity.com Team
May 19, 2009
•
Privacy
81
traffic managementsecurity threatspam analysisExploring Email Harvesters' Configurations And Spam Impact Analysis
In previous posts on web application email harvesting, and the distributed email harvesting honeypot, I commented on a relatively less popular threat - the foundation for sending spam and phishing emails, namely collecting publicly available email addresses. The other day I came across an email harvester and decided to comment on its configuration file. . Thankfully, there're many spam poison projects where these crawlers get directed to a huge number of randomly generated email addresses. And while the results are evident, namely they're picking them up and poisoning their databases with non-existent emails it is questionable if that's the best way to fight spam, since the spammers are going to send their message to anyone, even to the non-existent email addresses causing network load. Something else worth mentioning, these email harvesters are starting to pick up [at] and [dot] type of obfuscation too. The link for this article located at Dancho Danchev is no longer available. . Numerous deceptive schemes mislead bots to arbitrary inboxes, raising concerns about their success in tackling unsolicited messages.. Email Harvesting, Spam Protection, Phishing Threats. . LinuxSecurity.com Team
Jan 23, 2007
•
Privacy
81
cybersecurityidentity theftuser awarenessSophos Warns Users About Spam Scheme for Identity Theft
IT security firm Sophos has warned computer users to think before forwarding chain letters after discovering a new scam being used by spammers to collect email addresses. A spammed email campaign, seen by Sophos, poses as a research project into chain mail and joke messages that are frequently sent between email users around the world. Chain letters and jokes can easily be sent to a person's full contact list or an entire company department, resulting in all the valid email addresses of everyone who received the message being contained in the body of the message. . The new spam campaign asks for chain letters to be forwarded to the spammers (who are posing as a researcher called Gemma). However, Sophos warns that rather than conducting a study of chain letters, the recipients are actually planning to gather innocent peoples' contact details for the purposes of spam and identity theft. The link for this article located at Help Net Security is no longer available. . The new spam campaign asks for chain letters to be forwarded to the spammers (who are posing as a re. security, sophos, warned, computer, users, think, forwarding, chain, letters. . LinuxSecurity.com Team
Sep 14, 2006
•
Privacy
74
consumer privacyemail harvestingspammingExploring Email Harvesting and Consumer Privacy Risks in Cybersecurity
E-mail addresses are the currency in a financial shell game that involves rapidly moving consumer contact information from database to database while concealing where and how the data was collected, according to West's research, which he has documented in a map that painstakingly details all the dark and twisted paths that your e-mail address has been traveling.. . .. E-mail addresses are the currency in a financial shell game that involves rapidly moving consumer contact information from database to database while concealing where and how the data was collected, according to West's research, which he has documented in a map that painstakingly details all the dark and twisted paths that your e-mail address has been traveling. Spammers harvest e-mail addresses from websites and public posts on Internet newsgroups and bulletin boards and then sell the addresses to other spammers, or to unscrupulous marketing companies who pay a bounty fee per submitted name. These marketing lists may eventually be sold to legitimate companies who often believe they are purchasing a list of eager consumers' addresses. The link for this article located at Wired is no longer available. . Data points are the lifeblood in a digital charade centered around user information transfer and security threats.. Email Harvesting, Data Privacy Risks, Cybersecurity Threats. . Anthony Pell
Jul 03, 2002
•
Network Security
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Explore top 10 tips to secure your open-source projects now. Read More