Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found -2 articles for you...
67
cyber threatsransomwarefile encryptionExploring Qilin Ransomware Attacks on VMware ESXi Hypervisor Systems
The Linux version of Qilin, a new ransomware strain that debuted in January, has been spotted in the wild. It's also one of the first ransomware families to target VMware ESXi. . Qilin targets users and organizations that run ESXi hypervisors. The malware encrypts files on connected USB devices with AES-256 encryption and a randomly generated RSA public key. It also creates an HTML file in each folder containing encrypted files containing instructions on paying the ransom and where to get decryption keys. The malware doesn't appear very sophisticated and is likely not targeting any specific industry or organization; it's just another opportunistic infection for any user connecting a USB device infected with Qilin to their machine. I found the article linked below very helpful in understanding the specifics of this attack, and I wanted to share it with you! . Qilin specializes in supporting users and organizations leveraging ESXi virtualization technologies, safeguarding information with the robustness of AES-256 encryption.. Qilin Ransomware, ESXi Hypervisor Security, AES-256 Encryption, Cyber Threats, Linux Malware. . LinuxSecurity.com Team
Dec 04, 2023
•
Cryptography
67
security advisorycyber threatsmalwareMichaelKors Ransomware Targets Linux And VMware ESXi Systems In 2023
A new ransomware-as-service (RaaS) operation called MichaelKors has become the latest file-encrypting malware to target Linux and VMware ESXi systems as of April 2023. . The development points to cybercriminal actors increasingly setting their eyes on the ESXi, cybersecurity firm CrowdStrike said in a report shared with The Hacker News. "This trend is especially noteworthy given the fact that ESXi, by design, does not support third-party agents or AV software," the company said. "In fact, VMware goes as far as to claim it's not required. This, combined with the popularity of ESXi as a widespread and popular virtualization and management system, makes the hypervisor a highly attractive target for modern adversaries." The link for this article located at The Hacker News is no longer available. . Cybercrime trends for 2023 show "FashionComplete" launching ransomware-as-a-service attacks aimed at Windows and Hyper-V environments, emphasizing rising digital threats this year.. Ransomware as a Service,Linux Malware,ESXi Security,Cyber Threats. . LinuxSecurity.com Team
May 15, 2023
•
Cryptography
77
malwareransomwaresecurity threatRoyal Ransomware Hits VMware ESXi Servers: A Growing Linux Threat
Royal Ransomware is the latest ransomware operation to add support for encrypting Linux devices to its most recent malware variants, specifically targeting VMware ESXi virtual machines. . BleepingComputer has been reporting on similar Linux ransomware encryptors released by multiple other gangs, including Black Basta , LockBit , BlackMatter , AvosLocker , REvil , HelloKitty , RansomEXX , and Hive . The new Linux Royal Ransomware variant was discovered by Will Thomas of the Equinix Threat Analysis Center (ETAC), and is executed using the command line. . Sovereign Malware is now directed at Linux environments through VMware ESXi, posing serious security challenges. Discover more about this risk.. Royal Ransomware, Linux Encryption, VMware Threat, ESXi Malware. . LinuxSecurity.com Team
Feb 06, 2023
•
Server Security
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Explore top 10 tips to secure your open-source projects now. Read More