Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 6 articles for you...
78
security advisoryIntelprocessor securityIntel CPU Microcode Update: Gen8 To Gen 13 Raptor Lake Security Advisory
Well, this is a bit strange... Intel just published Friday afternoon CPU microcode updates for all supported processor families back to Coffee Lake "Gen 8" for undisclosed security updates. . Earlier this week was Patch Tuesday and Intel issued a round of new security advisories for various -- mostly software -- security issues. Of this month's security advisories, there was nothing pertaining to CPU microcode explicitly nor any "Intel Processor" advisories this month. But hitting this Friday afternoon now for the Intel Linux CPU microcode repository are a new set of firmware binaries... The mentioned change is "Security updates for [INTEL-SA-NA]." The ID format is for the Intel Security Advisory (SA) and presumably NA is for "Not Available." Given it's dropping a few days past Patch Tuesday, it would appear to be for some new and not publicly disclosed issue. Concerning as well is the scope of the new CPU microcode for the security update(s) are basically all supported CPU families. From Gen8 Coffee Lake and Whiskey Lake Mobile up through the latest Xeon Scalable Gen 4, Xeon Max, and Gen 13 Raptor Lake are all updated. Plus this is the first time seeing updated CPU microcode published for Alder Lake N CPUs as well as Atom C1100 "Arizona Beach" platforms. The link for this article located at Phoronix is no longer available. . Intel's latest firmware enhancements, spanning from Generation 8 through current processors, tackle unidentified vulnerabilities; learn additional insights.. Intel CPU Microcode, Microcode Updates, Processor Security. . LinuxSecurity.com Team
May 15, 2023
•
Vendors/Products
79
hardware supportopen source toolfirmware updateFwupd 1.8.6 New Hardware Support And 30% Smaller Package Size
Fwupd 1.8.6 is out as the newest stable release of this open-source firmware updating tool most notably used by Linux systems but also supported on various BSDs and even Windows. . New hardware support with Fwupd 1.8.6 includes supporting Focaltech touchpads, FPC fingerprint readers, and support for Supermicro servers running Redfish. This Supermicro support comes from Kai Michaelis with 9elements Security, sadly not from Supermicro itself, and limited in scope to updating the BIOS using the Redfish API. Fwupd 1.8.6 is also notable in that its install package size has been optimized and is now about 30% smaller than prior releases. This ~30% reduction comes via compressing some data files, building some plugins into the binary, and splitting out common code in tools. The link for this article located at Phoronix is no longer available. . Explore the latest in Fwupd 1.8.6, introducing enhanced device compatibility and achieving a 30% reduction in package size for streamlined updates.. Firmware Update, Hardware Support, Package Optimization. . LinuxSecurity.com Team
Oct 10, 2022
•
Security Projects
79
open sourcefirmware updatecorebootExploring Coreboot Firmware Transition for End-of-Life Devices by LVFS
The Linux Vendor Firmware Service (LVFS) with Fwupd for firmware updating on Linux could soon be making it easier to transition older, end-of-life devices off official firmware packages and onto the likes of open-source Coreboot for capable aging PC hardware. This not only would make the system run on more free software but would extend the life of the hardware with firmware updates where the vendor has ceased their support. . Lead LVFS/Fwupd developer Richard Hughes of Red Hat stoked a community question , "Hypothetically, if a legal entity (like the LVFS) started distributing Coreboot firmware security updates for EOL hardware like the ThinkPad X220 (with the vendors blessing) how does that feel? You'd have to explicitly opt-in and it would be clear all OEM warranty is gone." Obviously there are some legal issues involved and such a move may not be endorsed by the hardware vendor, but the affected hardware is end-of-life after all. It is an interesting avenue since right now Coreboot can run on a lot of other Intel laptops / desktop motherboards / server motherboards but generally isn't very easy for inexperienced users to flash and transition to with usually quite involved steps for building and flashing. LVFS/Fwupd could make it much easier to switch off the proprietary firmware of your system and onto libre firmware where supported. The link for this article located at Phoronix is no longer available. . The Linux Vendor Firmware Service (LVFS) transforms open-source firmware for older devices, enabling essential updates from Coreboot to enhance longevity and performance. Firmware Updates, Open Source Solutions, LVFS Deployments, Coreboot Integration, End of Life Devices. . LinuxSecurity.com Team
Jan 26, 2022
•
Security Projects
209
security advisorysoftware patchfirmware updateLVFS Experiences High Activity Ahead Of Potential Security Issues
The Linux Vendor Firmware Service (LVFS) that integrates with Fwupd for delivering firmware updates primarily to Linux users is surging with around three times the normal traffic volume. Unfortunately, this boost in traffic appears to be due to vendor(s) releasing new system firmware updates ahead of disclosing a presumptive security issue. . Last summer LVFS shot up with activity and when that huge uptick in LVFS activity occurred it ended up being due to Dell BIOS/UEFI updates due to new security vulnerabilities. The sudden surge in LVFS/Fwupd activity at around three times its usual volume does seem to point to another imminent security vulnerability being disclosed around system firmware. The link for this article located at Phoronix is no longer available. . An upsurge in activity has been noted on LVFS, suggesting imminent security vulnerabilities that may necessitate forthcoming firmware patches.. LVFS Activity, Firmware Update Alerts, Linux Security Notice, Fwupd Updates. . Brittany Day
Jan 19, 2022
•
Security Trends
214
network securitysecurity challengecyber riskIdentifying Risks From Unsupported IoT Devices in Your Network
Imagine reading a headline in tomorrow’s news stating that your neighbor’s identity was stolen and their life savings cleaned out by criminals who entered through their ‘smart’ washing machine. Sound ridiculous? Well, have you checked your own home Wi-Fi network lately? . You might have several connected household gadgets and other internet of things (IoT) devices tethered wirelessly through a misconfigured router with no firewall settings. Is the firmware current? Are security patches up to date? Still not convinced this is a serious problem? Then consider this glaring example of how dangerous an outdated device can be. . With increasing smart devices at home, unsupported IoT risks rise. They lack updates, making them vulnerable to attacks and undermining network reliability.. IoT Devices, Cybersecurity Risk, Network Protection, Firmware Updates, Security Challenges. . Brittany Day
Aug 30, 2021
•
IoT Security
78
security advisorythreat mitigationprocessor securityAMD Security Fix: PSP And Chipset Firmware Updates For Vulnerabilities
AMD has responded to the reports last week of a range of security flaws affecting its Platform Security Processor (PSP) and chipset. The company acknowledges the bugs and says that, in coming weeks, it will have new firmware available to resolve the PSP bugs. These firmware fixes will also mitigate the chipset bugs. . Israeli firm CTS identified four separate flaw families, naming them Masterkey (affecting Ryzen and Epyc processors), Ryzenfall (affecting Ryzen, Ryzen Pro, and Ryzen Mobile), Fallout (hitting only Epyc), and Chimera (applying to Ryzen and Ryzen Pro systems using the Promonotory chipset).. AMD has identified several vulnerabilities within the PSP and is dedicated to delivering firmware updates to enhance protection against potential risks.. AMD Firmware Update, Processor Security Flaws, Chipset Vulnerability. . LinuxSecurity.com Team
Mar 21, 2018
•
Vendors/Products
83
network securitysecurity riskhome networkDangers of Wireless Routers: Enhance Your Home Network Security
You've installed antivirus software on your computers, configured your operating system to update its security automatically and password-protected your Wi-Fi. So your home network is safe against hackers, right?. Guess again. And then take a long look at your wireless router. For years, manufacturers of home routers have all but ignored security issues, at least when it comes to making sure that consumers update their firmware to close exploitable vulnerabilities. Let's put it this way: Have you ever updated the firmware on your router? If not, odds are good that it's got one or more security holes through which a properly motivated hacker could slip. The link for this article located at Read Write Hack is no longer available. . Residential networks carry inherent security risks. Understand the threats posed by Wi-Fi routers and the critical need for regular firmware upgrades.. Wireless Router Risks, Home Network Safety, Firmware Update Best Practices. . LinuxSecurity.com Team
Apr 18, 2013
•
Hacks/Cracks
83
linux supportopen sourcegaming consoleExploring PS3 Linux Support: User Hacks And Firmware Challenges
It's not clear why Linux fans would even want to run it on a PS3, "when a console is NOTHING but 'DRM... in a box'" says Slashdot blogger hairyfeet. "Even when [Sony] allowed Linux you didn't get access to the full machine -- no GPU access -- which left it an underpowered POWER based PC.". Never get between a geek and a processor" would be an excellent maxim for tech companies to live by, but it's one that gets ignored again and again. Take Sony's (NYSE: SNE) latest misguided move. Not only is it what inspired Montreal consultant and Slashdot blogger Gerhard Mack to utter those sage words, but it's also what has now prompted George Hotz -- author of the original hack into the PS3 -- to vow he'll craft yet another hack to get around its latest firmware update. "A note to people interested in the exploit and retaining OtherOS support Learn how SugarCRM will improve your business. Free Trial. Click here., DO NOT UPDATE," Hotz wrote in a follow-up post last week. "I will look into a safe way of updating to retain OtherOS support, perhaps something like Hellcat's Recovery Flasher." Apparently addressing Sony, Hotz added, "I never intended to touch CFW, but if that's how you want to play... " In the meantime, "my investigation into 3.21 has begun," he wrote. The link for this article located at LinuxInsider is no longer available. . Uncover the struggle surrounding PS3's Linux capabilities amidst firmware enhancements, showcasing user-led modifications that defy console restrictions.. Linux Console Hacking, PS3 Exploits, Open Source Gaming. . LinuxSecurity.com Team
Apr 05, 2010
•
Hacks/Cracks
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More