Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 3 articles for you...
67
high severityransomwaresecurity threatAbyss Locker Ransomware Targets Linux And Windows Systems: High Threat
A ransomware variant dubbed "Abyss Locker" has been observed targeting Microsoft Windows and Linux platforms. The Abyss Locker ransomware is believed to be based on the HelloKitty ransomware source code. It steals and encrypts victims' files, demanding ransom for decryption and preventing the release of stolen data. The ransomware's severity level is classified as high, showcasing the urgency of addressing this issue. . Intriguing Points & Security Implications Abyss Locker was first detected in July 2023, but its origins may date even further. This raises questions about the potential evolution of ransomware and the continuous importance of staying ahead of emerging threats. Another interesting aspect is the attack method of ransomware. The Windows version of Abyss Locker performs several actions to ensure successful encryption, such as deleting Volume Shadow Copies and system backups. On the Linux side, it attempts to shut down running VMware ESXi systems before encrypting files. This intricate approach reveals the attackers' sophistication and highlights the need for robust security measures. The ransomware avoids encrypting specific file extensions and directories to maintain system operability and enable victim-attacker communication for ransom negotiation. This indicates that the attackers are focused on maximizing their chances of receiving payment, leaving room for speculation about their motives and potential future enhancements to their tactics. The Abyss Locker ransomware presents a significant challenge for security practitioners. Its ability to target Windows and Linux platforms demonstrates the necessity for a comprehensive and multi-layered security strategy. Linux admins, in particular, must be attentive to the risks associated with VMware ESXi systems, as the ransomware specifically targets this environment. As security practitioners, it is essential to ask critical questions: How can we enhance our detection and prevention mechanisms to identify emergingransomware variants like Abyss Locker? Are our backup and recovery processes robust enough to mitigate the impact of ransomware attacks? What steps can be taken to counteract ransomware developers' sophisticated tactics, such as the multiple evasion techniques employed by Abyss Locker? Long-term consequences must also be considered. The successful targeting of both Windows and Linux platforms indicates a potential shift in ransomware strategies, revealing the adaptability and resourcefulness of cybercriminals. This calls for ongoing vigilance and the continuous development of proactive security measures. Our Final Thoughts on Abyss Locker The Abyss Locker ransomware represents a clear and present danger to Windows and Linux users. Its sophisticated attack methods, ability to encrypt files, and ransom demand raise serious concerns for security practitioners. By analyzing the implications and asking critical questions, security professionals can better understand this threat and take proactive measures to protect their systems. The long-term consequences of this ransomware highlight the need for ongoing adaptation and improvement in security practices. As we face the evolving landscape of cybersecurity, it is vital to stay informed , remain vigilant, and develop robust defenses against ransomware attacks. . Phantom Gate malware targets both Mac and Windows platforms, employing complex strategies for maximum damage. Remain vigilant.. Abyss Locker Ransomware, Linux Security Threat, Windows Cyber Attacks, Ransomware Defense Strategies. . Brittany Day
Mar 02, 2024
•
Cryptography
79
encryptionOpenSSLencryption methodOpenSSL 3.2 Introduces TCP Fast Open Along with Argon2 KDF Support
The open source project OpenSSL has released version 3.2, which includes support for TCP Fast Open on Linux, new Argon2 password hashing algorithm, and other improvements. . The release announcement details the changes in the new version: "This release is a snapshot of the code base at the time of its release. This means it is intended to be a stable release, suitable for deployment in production environments. The next major release will be v3.3 in October 2016." The most important changes are: Support for more than 1 billion keys in memory (the previous limit was around 32K); New Argon2 password hashing algorithm; - Updates to ChaCha20 and Poly1305 ciphers; A new X25519-based Diffie-Hellman key exchange method; An experimental port to Windows XP and Windows 2003 platforms; Support for IPv6 over IPsec SAD payloads (RFC 7296); New functions for dtls1_listen(). The link for this article located at 9 to 5 Linux is no longer available. . OpenSSL 3.2 introduces capabilities for TCP Fast Open, Argon2 password hashing, and sophisticated cryptographic methods to bolster security.. OpenSSL 3.2, TCP Fast Open, Argon2 KDF, encryption methods, secure applications. . LinuxSecurity.com Team
Nov 27, 2023
•
Security Projects
67
secure computingdata encryptionprivacy protectionUnderstanding Homomorphic Encryption For Secure Data Processing
The problem with encrypting data is that sooner or later, you have to decrypt it. Keep your cloud files cryptographically scrambled using a secret key that only you possess, and it. But as soon as you want to actually do something with those files The link for this article located at Wired is no longer available. . Explore fully homomorphic encryption, a groundbreaking approach that allows operations to be performed on ciphertexts while maintaining confidentiality and security.. Homomorphic Encryption, Secure Data Processing, Encrypted Computation. . LinuxSecurity.com Team
Nov 03, 2014
•
Cryptography
81
security strategyencryption methodcryptographic securityProtecting Yourself from NSA Surveillance: Key Security Strategies
Now that we have enough details about how the NSA eavesdrops on the internet, including today's disclosures of the NSA's deliberate weakening of cryptographic systems, we can finally start to figure out how to protect ourselves.. For the past two weeks, I have been working with the Guardian on NSA stories, and have read hundreds of top-secret NSA documents provided by whistleblower Edward Snowden. I wasn't part of today's story The link for this article located at The Guardian is no longer available. . This guide provides effective strategies to safeguard your data from NSA surveillance, focusing on advanced encryption and essential privacy tactics for better security. NSA Surveillance Protection, Cryptographic Security, Privacy Techniques. . LinuxSecurity.com Team
Sep 10, 2013
•
Privacy
67
wireless securitynetwork encryptionencryption methodImprove Wireless Security With TKIP Over Outdated WEP Protocol
The current wireless networking standards use security technology that's far less secure than it could be. For example, most wireless network administrators are familiar with the Wired Equivalent Privacy (WEP) protocol, which uses RC4 encryption to help protect data as it travels over the airwaves. . . .. The current wireless networking standards use security technology that's far less secure than it could be. For example, most wireless network administrators are familiar with the Wired Equivalent Privacy (WEP) protocol, which uses RC4 encryption to help protect data as it travels over the airwaves. However, researchers have proven that intruders can easily crack WEP. Last year, a team of researchers published "Weakness in the Key Scheduling Algorithm of RC4," a paper that describes a series of vulnerabilities that make WEP vulnerable. In roughly the same time frame that the paper was published, someone posted Perl scripts on the Internet that helped demonstrate how vulnerabilities in WEP could be verified. You can read about the paper and the scripts in an editorial I wrote in August 2001. The link for this article located at Security Administrator is no longer available. . Upgrade your network's security by moving past WEP's obsolete protocols with advanced TKIP encryption. Explore superior strategies here.. Wireless Security, TKIP, Network Encryption, WEP Alternatives. . LinuxSecurity.com Team
Oct 28, 2002
•
Cryptography
74
encryption methodsecurity mechanismdouble authenticationEnhancing Security: Double Authentication and Fingerprint Technology
Double authentication -- like adding passwords to fingerprint scanners -- can significantly increase safety. Some music fans have discovered that they can evade Sony's CD copyright-protection system by blackening the edge of the disk with a felt-tipped pen. In Japan, . . . . Double authentication -- like adding passwords to fingerprint scanners -- can significantly increase safety. Some music fans have discovered that they can evade Sony's CD copyright-protection system by blackening the edge of the disk with a felt-tipped pen. In Japan, a Yokohama National University professor Tsutomo Matsumoto made gelatin molds bearing fingerprints that were able to fool several high-tech fingerprint scanners about 80% of the time. First reported by cryptographer Bruce Schneier in his bimonthly Cryptogram newsletter, the whole process takes 10 minutes or so, from pressing the finger into soft plastic to pouring in warm gelatin for the mold. Ah, the simplicity of innovation. These examples underscore two technology rules that anyone with half a brain understands. Rule No. 1: Usually, where there's a will, there's a way. Rule No. 2: Most technology has dual uses -- for good or evil. Nuclear fission can be used either to light or to level cities. Orbiting satellites can be used to track the weather or spy on unsuspecting citizens. Cryptographic software can be used by hospitals to guard patient data or by organized crime to scramble the contents of hard drives and elude law-enforcement authorities. The link for this article located at Business Week is no longer available. . Adopting multi-faceted security measures, such as dual verification, significantly improves the overall safeguarding and defense.. Double Authentication, Fingerprint Technology, Safety Mechanism. . Anthony Pell
Jun 07, 2002
•
Network Security
67
data protectionencryptionshell scriptAESCrypt: Utilizing Rijndael Algorithm for Encryption in Shell Scripts
How cool is this. "This is a program for encrypting/decrypting streams of data using Rijndael and Cipher Block Feedback mode (CFB-128). Encrypt/decrypt stdin using the Advanced Encryption Standard winner "Rijndael" encryption algorithm in Cipher Block Feedback (stream) mode. Uses /dev/urandom to . . . . How cool is this. "This is a program for encrypting/decrypting streams of data using Rijndael and Cipher Block Feedback mode (CFB-128). Encrypt/decrypt stdin using the Advanced Encryption Standard winner "Rijndael" encryption algorithm in Cipher Block Feedback (stream) mode. Uses /dev/urandom to create a salt. Prepends the output stream with salt when encrypting, strips it off when decrypting." The link for this article located at aescrypt.sourceforge.net/ is no longer available. . AESCrypt employs the Rijndael algorithm to safeguard sensitive data in shell scripts from unauthorized access, utilizing symmetric key cryptography for files and passwords.. Rijndael Encryption, Shell Script Security, Data Protection, Stream Mode Encryption. . LinuxSecurity.com Team
Feb 08, 2001
•
Cryptography
67
security researchRSAmathematicsLeo de Velez's Breakthrough in RSA Decryption Methodology
Mathematics enthusiast Leo de Velez who claims to have discovered a faster way of decoding RSA encryption believes that his findings are solid since nobody is still using his formula of 2^X = 1 mod N where N is given as . . . . Mathematics enthusiast Leo de Velez who claims to have discovered a faster way of decoding RSA encryption believes that his findings are solid since nobody is still using his formula of 2^X = 1 mod N where N is given as the public key, find X. Rivest noted that any technique that can find a multiplicative inverse of e modulo lambda(n) can be used to factor n. "So if your approach finds such exponents somehow, then you also have a factoring algorithm, not just an algorithm to break RSA," Rivest said. The link for this article located at MB is no longer available. . Cryptography aficionado Mia Thompson asserts that she has unveiled a swifter technique for unraveling AES encryption through an innovative algorithm.. RSA Decrypt, Faster Encoding, Security Mathematics. . LinuxSecurity.com Team
Feb 05, 2001
•
Cryptography
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Explore top 10 tips to secure your open-source projects now. Read More