Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 14 articles for you...
67
Linux securityransomwarecyber threatMonti Ransomware Targets Linux in Healthcare and Financial Services
The Monti ransomware was found in June 2022 that attracted notice due to its close resemblance to the Conti ransomware, both in name and tactics, drawing attention from cybersecurity experts and organizations. . Monti ransomware group has been observed to employ tactics similar to those of the Conti team, including utilizing their TTPs and leaked source code and tools. Apart from this, Monti also consistently targeted the companies and posted their breaches to expose their details on a leaked site built by the operators of Monti. After a two-month gap, the Monti ransomware gang is back again, and now it’s back with a new Linux locker targeting: Legal entities Financial services Government entities Healthcare industries . NovaCrypt malware focuses on Windows platforms within education and government industries, employing methods akin to REvil.. Monti Ransomware, Linux Attacks, Financial Security, Healthcare Cyber Threats. . LinuxSecurity.com Team
Aug 17, 2023
•
Cryptography
81
security advisorydata breachsettlementBrazilian Bank Inter Settlement: 1.5 Million Reais For Data Breach Incident
Brazilian bank Inter has achieved a settlement over a major security flaw that leaked data of nearly 20 thousand account holders earlier this year. . Under the conclusion for the case, announced by Brazil's Public Prosecutor's Office (PPO) on December 18, the bank will pay 1.5 million reais ($382,000) as a means to repair the collective moral damages related to the incident. The link for this article located at ZDNet is no longer available. . Under the conclusion for the case, announced by Brazil's Public Prosecutor's Office (PPO) on Decembe. brazilian, inter, achieved, settlement, major, security, leaked, nearly. . LinuxSecurity.com Team
Dec 28, 2018
•
Privacy
83
cyber threatsdata protectionsecurity issuesExploring Hidden Tunnels Maligning Financial Services Security
The security tools and strategies financial services organizations use to protect their data could be leveraged by cybercriminals who sneak in undetected via "hidden tunnels" to conceal their theft, according to a new report published by Vectra.. Ironically, financial firms have the biggest non-government security budgets in the world, Vectra says. Bank of America invests more than $600 million in cybersecurity each year, while JPMorgan Chase spends $500 million. Equifax, while smaller than both, spends an annual $85 million on security. The link for this article located at DarkReading is no longer available. . Ironically, financial firms have the biggest non-government security budgets in the world, Vectra sa. security, tools, strategies, financial, services, organizations, protect, their. . LinuxSecurity.com Team
Jun 21, 2018
•
Hacks/Cracks
67
data breachidentity theftfinancial servicesData Aggregators Hacked: Authentication Security at Risk
The reported hack of major consumer and business data aggregators has intensified doubts of the reliability of knowledge-based authentication widely used in the financial services industry, analysts say.. The computer systems of LexisNexis, Dun & Bradstreet and Kroll Background America were hacked by an underground identity theft service that sells social security numbers, birth records, credit and background reports on millions of Americans, Brian Krebs, a former Washington Post reporter and author of the KrebsonSecurity blog reported on Wednesday. Krebs uncovered the hack following a seven-month investigation of the criminal site ssndob[dot]ms. The link for this article located at CSO Online is no longer available. . The computer systems of LexisNexis, Dun & Bradstreet and Kroll Background America were hacked by an . reported, major, consumer, business, aggregators, intensified, doubts. . LinuxSecurity.com Team
Oct 01, 2013
•
Cryptography
74
security trendscyber threatDDoS attackDDoS Attacks Triple in Financial Services Industry: Rising Threats
The financial services industry saw nearly triple the number of distributed denial-of-service (DDOS) attacks during the first three months of this year compared to the same period last year, according to a report released Wednesday.. The new data comes from security vendor Prolexic, which counts ten of the world's major banks as clients for its DDOS mitigation services. In its report, the company said DDOS attacks also rose in intensity, with increases in both bandwidth and packet-per-second rates. The link for this article located at Tech World is no longer available. . The financial sector witnesses a surge of DDoS assaults, tripling in frequency during the onset of 2023, underscoring escalating cybersecurity dangers.. DDoS Attacks, Financial Sector, Cybersecurity Trends. . Dave Wreski
Apr 12, 2012
•
Network Security
83
security advisorydata exposurefinancial servicesCitigroup Security Advisory: Credit Card Data Breach Impacting Customers
Citigroup Inc. said Thursday that hackers accessed the credit card information of North American customers, in an online security breach affecting about 200,000 accounts.. The bank said it recently discovered during routine monitoring that account information for about 1 percent of customers was viewed. Citi has more than 21 million credit card customers in North America, according to its 2010 annual report. The New York-based bank didn't say exactly how many accounts were breached. The link for this article located at Economic Times India is no longer available. . Bank of America disclosed a breach, allowing cybercriminals to infiltrate customer accounts, compromising data for around 300,000 individuals.. Credit Card Breach, Cybersecurity, Data Theft. . LinuxSecurity.com Team
Jun 09, 2011
•
Hacks/Cracks
79
software developmentthreat landscapesecure codingEnhancing Software Safety Through CEO Commitment to Secure Coding
The financial services industry is well ahead of other markets when it comes to making secure coding a reality, but other firms, including smaller independent software vendors, aren't making the effort, according to Ryan Berg, a senior architect of security research for IBM. The CEO within an organization can make the difference, Berg said. . If the CEO makes a commitment to building more software development improvements and shows that commitment in the budget, the entire software development process could gain more positive changes, Berg said. In this interview, Berg outlines the threat landscape, explains how companies can make incremental changes to their software development processes and which models organizations can turn to for guidance. We hear so much about the need for companies to focus on secure software development. Why should software security be a priority? Ryan Berg: About 12 years ago, I worked at a company called BBN and at the time one of the things we introduced at BBN was the first managed firewall services. So back 12 years ago, one of the greatest threats to an organization was access to the network. That's what everyone was concerned about. Firewalls came around and you needed an advanced degree just to configure a firewall. But one of the biggest requests that came in to our network operation center was: "Can you open this port for me?" As more and more application services came onto the network, they tried to open the firewall more and more to make them work. At the time the applications and Web applications were pretty bad. The threat landscape at the time was Web defacement. Then the Web started to evolve and about five years ago we saw more and more dynamic content pushed onto the Web and more actual business functions happening. The firewall still provides a baseline of security, but you allow port 80 and you allow a freeway of activity into your network. What used to be a closed off sense of what was internal and what was external is now evaporated. It appears that mostorganizations, once they're doing business on the Internet, allowing traffic in and out of their network on port 80, they've essentially allowed an open door for access into your infrastructure. The link for this article located at Search Security is no longer available. . A leader's dedication to robust programming practices strengthens software creation and elevates security measures throughout the company.. Secure Coding, Software Development, Threat Landscape. . LinuxSecurity.com Team
Aug 30, 2010
•
Security Projects
79
security initiativessecure codingfinancial servicesSecure Coding Strategies Amid Budget Cuts in Financial Services
I thought a national discussion about secure programming was important, despite that it's not specifically about open source. Homeland Security's Build Security In, Microsoft's Software Development Lifecycle (SDLC), BSIMM, and now OpenSAMM: Secure application development programs are spreading amid calls for more secure code. The practice of writing applications from the ground up with security in mind remains in its infancy, even with software giant Microsoft leading the charge by sharing its internal Software Development Lifecycle framework in the form of free models and tools for third-party application developers and customers in the spirit of promoting more secure software. . Now financial services firms are comparing notes and sharing their secure coding strategies and experiences in the new Building Security In Maturity Model (BSIMM) program spearheaded by Cigital and Fortify Software. But in a recession fraught with shrinking budgets, it's unclear whether companies can afford to invest in secure development initiatives. In an as-yet unpublished survey by Forrester Research and Veracode, 45 percent of organizations said that application security is a significant part of their overall security strategy, but that they will likely be scaling back those initiatives in their next budget cycle. Around 18 percent of these organizations said their funding for app security will remain intact. The link for this article located at DarkReading is no longer available. . Now financial services firms are comparing notes and sharing their secure coding strategies and expe. thought, national, discussion, about, secure, programming, important, despite, specif. . LinuxSecurity.com Team
May 06, 2009
•
Security Projects
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More