Security Vulnerabilities 
malware linux
malware linux IronWorm steals credentials and uses them to spread beyond the original victim, turning developer access into a supply chain risk. . A new campaign targeting npm has evolved past simple credential theft. Researchers identified IronWorm, a self-spreading threat. It harvests high-value Linux development secrets—SSH keys, cloud tokens, package publishing credentials. One compromised workstation becomes a launchpad for downstream supply chain attacks. This is not a get-in-and-get-out operation....
Jun 08, 2026
Network Securitysystem security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 4 articles for you...
67
malware analysissecurity threatkey reconstructionExamining DECT Cryptanalysis and Malware Vulnerabilities in Security
As already announced at the 26C3 congress, Karsten Nohl, Erik Tews and Ralf-Philipp Weinmann have released details of their cryptanalysis of the proprietary and secret encryption algorithm used with DECT (DECT Standard Cipher, DSC) an encryption commonly used with cordless phones. The analysis was carried out by reverse engineering DECT hardware and descriptions from a patent document. . In their paper titled "Cryptanalysis of the DECT Standard Cipher", the authors describe the analysis and reconstruction of the algorithm, as well as practical ways of calculating the key from recorded key streams within a few hours. A C language implementation of the DSC completes the document. * Cryptanalysis of the DECT Standard CipherPDF, a paper by Karsten Nohl, Erik Tews and Ralf-Philipp Weinmann. Reverse engineer Andrzej Dereszowski closely analysed the malware installed via a PDF document on a customer's system, searching for specific security holes. He found that the freely available Poison Ivy "remote administration tool" had been installed to access infected systems. The link for this article located at H Security is no longer available. . Investigate the intricacies of DECT cryptography and the examination of malicious software, exposing vulnerabilities associated with custom encryption schemes.. DECT Cryptanalysis, Malware Protection, Digital Security, Encryption Issues. . LinuxSecurity.com Team
May 06, 2010
•
Cryptography
67
cryptographysecurity analysissecurity expertExpert Insights from Bruce Schneier on Security and Cryptography
He's eaten guinea pig in Peru, whale in Japan, and tried insects in Australia. But security guru -- and part-time restaurant critic -- Bruce Schneier mostly steers clear of chain restaurants, which he finds oppressively uniform. When he's not sampling exotic cuisine, Schneier is best known as the developer of the Blowfish and Twofish encryption algorithms and as the bestselling author of Applied Cryptography, which has been called the bible for hackers. He's written other books that examine security and society, and he is a renowned security speaker, blogger, and columnist, as well as a popular media talking head who offers unique views on everything from encryption to post-9/11 security overkill. . The link for this article located at Read this full article is no longer available. . The link for this article located at Read this full article is no longer available.. eaten, guinea, whale, japan, tried, insects, australia, security. . LinuxSecurity.com Team
Jan 11, 2007
•
Cryptography
67
encryption standardsencryption algorithmaes implementationA Developer's Guide to Implementing AES Encryption Successfully
The following document provides a detailed and easy to understand explanation of the implementation of the AES (RIJNDAEL) encryption algorithm. The purpose of this paper is to give developers with little or no knowledge of cryptography the ability to implement AES. . .. The following document provides a detailed and easy to understand explanation of the implementation of the AES (RIJNDAEL) encryption algorithm. The purpose of this paper is to give developers with little or no knowledge of cryptography the ability to implement AES . The link for this article located at Net-security is no longer available. . Conquer the RSA cryptographic method through this simple manual crafted for optimal application.. AES Implementation, Cryptography Guide, Encryption Standards. . LinuxSecurity.com Team
Aug 13, 2003
•
Cryptography
67
data protectionfile encryptionsecurity measureImplementing Cryptographic Filesystems Using Linux CryptoAPI
This is the second article in a two-part series looking at cryptographic filesystems. The first article in this series covered the background on cryptographic filesystems from the underlying concepts to some of the mechanics of those systems. This article will cover . . . . This is the second article in a two-part series looking at cryptographic filesystems. The first article in this series covered the background on cryptographic filesystems from the underlying concepts to some of the mechanics of those systems. This article will cover implementation. The focus will be on implementing the Microsoft's EFS under Windows 2000 and the Linux CryptoAPI. One point to clarify from the first article involves the note that Microsoft's EFS does not support using a password-based symmetric algorithm. This is due to the concern that such schemes are weaker because of their susceptibility to dictionary attacks. While technically accurate, the fact remains that the public portion of the user's X.509v3 certificate (which is used to encrypt the File Encryption Key, or FEK, used by EFS) is used to encrypt the FEK. To decrypt the FEK requires the use of password or passphrase and unless password-based logon is disabled completely this password or passphrase is typically the user's domain password. Microsoft's Windows 2000 product introduced the encrypting file system (EFS) to the Windows product line. While third party add-on encrypting software has been available for some time, EFS was the integration of such a concept into Windows 2000. Under Windows 2000, EFS supports the DESX algorithm only. With Windows XP that encryption algorithm now includes 3DES as well and will eventually include the Advanced Encryption Standard (AES) algorithm. The link for this article located at SecurityFocus is no longer available. . Cryptographic filesystems are increasingly popular in Linux, utilizing the Linux CryptoAPI for secure data storage and encryption, ensuring confidentiality and integrity. cryptographic filesystems, Linux CryptoAPI,file encryption, data protection, encryption algorithm. . LinuxSecurity.com Team
Apr 14, 2003
•
Cryptography
67
RSA Securitykey recoveryencryption algorithmDistributed.net Wins RC5-64 Secret-Key Challenge: $10,000 Award
RSA Laboratories, the research center of RSA Security Inc. (Nasdaq: RSAS), the most trusted name in e-security®, today announced that a coordinated team of computer programmers and enthusiasts, known as distributed.net, has solved the RC5-64 Secret-Key Challenge. The distributed.net team solved the challenge in approximately four years, using 331,252 volunteers and their machines. Distributed.net receives a cash prize of $10,000 for solving the challenge.. . .. RSA Laboratories, the research center of RSA Security Inc. (Nasdaq: RSAS), the most trusted name in e-security®, today announced that a coordinated team of computer programmers and enthusiasts, known as distributed.net, has solved the RC5-64 Secret-Key Challenge. The distributed.net team solved the challenge in approximately four years, using 331,252 volunteers and their machines. Distributed.net receives a cash prize of $10,000 for solving the challenge. Established in 1997, RSA Laboratories' Secret-Key Challenge is offered to quantify the strength of symmetric encryption algorithms such as DES and the RC5® algorithm with various key sizes. By sponsoring an actual contest, RSA Laboratories helps the industry confirm theoretical estimates, and through this constant evaluation, vendors are motivated to continue to improve their security solutions. The distributed.net consortium utilized the idle time of computers throughout the world to search through the list of all possible 64-bit keys for RSA Security's RC5 algorithm to find the one secret key selected at random by RSA Laboratories that decrypts a given message correctly. RSA Laboratories sponsors a series of cryptographic challenges that allow individuals or groups to attempt to solve various encryption "puzzles" for cash prizes. The RC5-64 Challenge is one of a series of contests held to determine the difficulty of finding a symmetric encryption key by exhaustive search (trial-and-error). Previous contests include the DES Challenge, the RC5-40 Challenge and the RC5-56 Challenge. The link forthis article located at RSA is no longer available. . RSA Laboratories, the research center of RSA Security Inc. (Nasdaq: RSAS), the most trusted name in . laboratories, research, center, security, (nasdaq, rsas), trusted. . LinuxSecurity.com Team
Sep 26, 2002
•
Cryptography
67
encryption algorithmcommunication speedsecure onlineBoost Secure Communication Speed With IBM's Innovative Algorithm
A new algorithm developed by IBM could double the speed of secure online communications. IBM says the combination encryption/authentication technique is particularly suited to securing Internet protocols, storage area network protocols, fiber-optic networks and e-business transactions. But analysts say the new . . . . A new algorithm developed by IBM could double the speed of secure online communications. IBM says the combination encryption/authentication technique is particularly suited to securing Internet protocols, storage area network protocols, fiber-optic networks and e-business transactions. But analysts say the new technique needs further study. The as-yet-unnamed security algorithm simultaneously encrypts and authenticates messages. That innovation significantly improves the speed of the security process over that of previous approaches, which perform encryption and authentication separately. The new algorithm works using symmetric cryptography, in which the same secret key -- or mathematical code -- is used to encrypt and decrypt a message. Another popular security technique, called public-key cryptography, uses two different keys, one to encrypt and one to decrypt. It is slower but is considered more secure. The link for this article located at TechWeb is no longer available. . Microsoft's recent technology enhances data privacy while increasing transfer rates by improving encryption techniques significantly.. IBM Algorithm, Secure Communications, Encryption Technique. . LinuxSecurity.com Team
Feb 01, 2001
•
Cryptography
67
security featureperformance improvementdata authenticationIBM's New Dual-Function Encryption Algorithm Cuts Processing Time
IBM claims to have invented a new encryption algorithm which can encrypt and authenticate data in one step. The algorithm takes advantage of parallel processing hardware, to cut in half the time taken to encrypt data. However, the news has failed . . . . IBM claims to have invented a new encryption algorithm which can encrypt and authenticate data in one step. The algorithm takes advantage of parallel processing hardware, to cut in half the time taken to encrypt data. However, the news has failed to impress everyone. IBM says the algorithm could be used to take some of the load off networks, but Bruce Schneier, the founder of Counterpane Technologies, says the speed-up is insignificant in the greater scheme of things. He invoked Moore's Law, commenting: "It's a factor of two. Wait a year, and you get that speed-up for free." The link for this article located at The Register is no longer available. The link for this article located at The Register is no longer available. . IBM's new algorithm encrypts and authenticates data in one step, promising faster processing times.. Encryption Algorithm, Data Authentication, Parallel Processing. . LinuxSecurity.com Team
Dec 03, 2000
•
Cryptography
67
cryptographyencryption standardAESEvolution of DES and AES Encryption Algorithms in Cryptography
In the early seventies the US government put out a call for an encryption algorithm. It had no response. A year later in 1973 they tried again and got one response, from IBM. Then followed a bit of politicking, but by . . . . In the early seventies the US government put out a call for an encryption algorithm. It had no response. A year later in 1973 they tried again and got one response, from IBM. Then followed a bit of politicking, but by 1975 DES was born. DES was initially a FIPS (Federal Information Procurement Standard), but was quickly adopted around the world as the de facto standard for encryption. Certified for five years, DES and was checked regularly to make sure it was still strong enough. But in 1996 the US government decided it needed a new standard - an Advanced Encryption Standard or AES. It convened a meeting of cryptographers and industry figures and, in a rare example of democracy in action, it asked them what they wanted in an encryption algorithm. The link for this article located at The Register is no longer available. The link for this article located at The Register is no longer available. . In the early seventies the US government put out a call for an encryption algorithm. It had no respo. early, seventies, government, encryption, algorithm, respo. . LinuxSecurity.com Team
Nov 02, 2000
•
Cryptography
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More