Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 8 articles for you...
81
data breachsecurity incidentfraud detectionNatWest and RBS: Card Replacement Delayed After Ticketmaster Breach
Two major UK high street banks have started to send out replacement cards for some of their customers, nine months after one lender reported fraudulent activity to Ticketmaster. . Customers of NatWest and RBS have taken to social media to vent their frustration over the way the incident has been handled. The link for this article located at InfoSecurity is no longer available. . Customers of NatWest and RBS have taken to social media to vent their frustration over the way the i. major, street, banks, started, replacement, cards, their, customer. . LinuxSecurity.com Team
Jan 15, 2019
•
Privacy
76
cyber threatssecurity measuresfraud detectionProtecting Clients: Financial Institutions Combat Cyber Threats
t was 3am when 21-year-old Sydney secretary Rhiannon Moore got the SMS from Westpac. Her debit card had been blocked after the bank saw it had been used to buy porn and air tickets to Malaysia.. "They were obviously onto it straight away. I don't know how they found out about it so quickly," she said. The link for this article located at Sydney Morning Herald is no longer available. . Amid the rise of digital banking, institutions are committed to protecting clients from cyber threats using advanced technologies and strategies to mitigate risks. Fraud Detection, Cybersecurity, Client Protection, Security Alerts. . Dave Wreski
Jul 05, 2012
•
Organizations/Events
83
fraud detectionfinancial crimeonline banking fraudAnalysis of Operation High Roller: Corporate Account Fraud Tactics
McAfee has collaborated with security firm Guardian Analytics to uncover a ring of online banking criminals who specifically targeted corporate accounts with high balances. According to the two companies' white paper, the fraudsters have attempted to steal at least . The link for this article located at H Security is no longer available. . Explore the methodologies behind Operation High Roller, a significant cybercrime initiative aimed at infiltrating corporate banking accounts.. Online Banking Fraud, Corporate Account Security, Financial Crime Detection. . LinuxSecurity.com Team
Jun 27, 2012
•
Hacks/Cracks
81
cybersecurityidentity theftfraud detectionUnderstanding Insider Risks in Banking Against Identity Theft
As banks and other large companies spend large amounts of money on building firewalls and using complex technology to fortify their systems, it is often their own employees who are letting identity thieves in the door.. The largest banks are expected to spend tens of billions of dollars on cybersecurity this year, an increase of as much as 15% over 2010, as they rush to comply with new rules that require them to strengthen customer-authentication procedures and beef up other fraud detection measures, said Avivah Litan, an analyst with Gartner Research. But the success of low-tech approaches such as Mr. Patten's shows that increased spending alone won't be enough to insulate the banks, which are chock full of valuable data. The link for this article located at Wall Street Journal is no longer available. . Major financial institutions are boosting their investments in cybersecurity measures to guard against risks related to identity breaches stemming from internal activities.. Banking Security, Employee Awareness, Identity Theft, Fraud Detection, Cybersecurity Spending. . LinuxSecurity.com Team
Oct 31, 2011
•
Privacy
78
two-factor authenticationidentity managemententerprise securitySymantec's $1.28 Billion Acquisition of VeriSign's Security Division
In case your boss ever questions whether security is big business... Symantec will pay US$1.28 billion to acquire VeriSign's security business. The two companies confirmed the rumored acquisition, saying it would give VeriSign the opportunity to focus on its more-profitable domain name business, while allowing Symantec to broaden its growing portfolio of enterprise security products. l.. "There is a real need to be able to know who the user is and what they should have access to... but without the central theme of identity we weren't able to provide the total solution," Symantec CEO Enrique Salem said during a conference call to discuss the deal. "IT needs to be able to control the information, and identity matters to be able to provide that solution." Reports surfaced Tuesday that VeriSign had been shopping around its encryption technology and service business, and naming Symantec as the buyer. The VeriSign business unit sells SSL (Secure Sockets Layer) certificates -- used to authenticate secure Internet servers -- two-factor authentication tokens, fraud detection and public key infrastructure products for government and the enterprise. But the business has grown slowly of late, hurt by dropping SSL certificate prices, a fact that is reflected in the unit's low purchase price relative to its $371 million in annual revenue. "If you want to succeed in that market you have to have a lot of services, the platform, large and growing distribution channels -- a lot of things that Symantec has," Mark McLaughlin, VeriSign's president and CEO, said on the conference cal The link for this article located at Tech World is no longer available. . 'There is a real need to be able to know who the user is and what they should have access to... but . questions, whether, security, business, symantec, billi. . LinuxSecurity.com Team
May 20, 2010
•
Vendors/Products
83
security issuecyber threatfraud detectionNew Flaws in Chip and Pin Payment System Found by Cambridge Scientists
Most of us do not think twice about paying for something in a high street shop by keying in our pin. It is easy, fast and in most cases it works. But scratch a little under the surface and there are persistent reports of people who say they have been the subject of fraud of one kind or another on their credit or debit card.. Now a team of computer scientists at Cambridge University has found a flaw in chip and pin so serious they think it shows that the whole system needs a re-write. Over the past few years, the Cambridge team has uncovered a series of weaknesses in the system, which has been running since 2004. Shockingly simple Two years ago, we featured one on Newsnight showing that criminals could tap into the communications between a pin terminal and a customer's card, and read off sufficient information to create a cloned card. Now, the same team has found a way round the chip and pin system that is so simple it has shocked even them: "We think this is one of the biggest flaws that we've uncovered - that has ever been uncovered - against payment systems, and I've been in this business for 25 years," Professor Ross Anderson from the Cambridge University Computer Laboratory said. The link for this article located at BBC News is no longer available. . Now a team of computer scientists at Cambridge University has found a flaw in chip and pin so seriou. think, twice, about, paying, something, street, keying. . LinuxSecurity.com Team
Feb 11, 2010
•
Hacks/Cracks
67
cyber attacksecurity breachauthenticationTwo-Factor Authentication Risks: Cyber Attacks Against Banking Systems
Two-factor authentication -- used to protect online bank accounts with both a password and a computer-generated one-time passcode -- is supposed to be more secure than relying on a single password. But Gartner Research VP Avivah Litan warns that cyber criminals have had success defeating two-factor authentication systems in Web browsing sessions using Trojan-based man-in-the-middle attacks. . A Gartner Research note written by Litan explains that in the past few months, Gartner has heard from many banks around the world that rely on one-time-password authentication systems. Accounts at these banks have been compromised by man-in-the-middle attacks -- the report uses the term "man-in-the-browser" -- despite the use of two-factor security. One technique that the fraudsters have been using to bypass security controls is call forwarding. The link for this article located at Information Week is no longer available. . Digital assailants take advantage of dual-authentication measures in their operations, even though these are designed to bolster security for financial transactions.. Two-Factor Authentication,Risk Management,Cybersecurity. . LinuxSecurity.com Team
Dec 15, 2009
•
Cryptography
83
security issuecommunication threatphishingNew Phishing Method Exposes Banking Security Flaws With Call Forwarding
Researchers at SecureWorks have uncovered a new type of phishing attack that tries to trick victims into forwarding their telephone calls to the attacker to thwart attempts by a bank to detect fraud. The attack, found by the Atlanta-based security vendor this week, begins with an e-mail sent from the phisher telling the potential victim their bank needs to verify their phone number immediately, and their account will be suspended if they do not confirm the number. The victim is told to confirm their number by dialing *72 and then another number, effectively forwarding their calls to the phisher's telephone. . After going through this process, the victim is asked in the e-mail to update their personal information, such as bank account and Social Security numbers. If the victim's bank calls to question an unusual transaction while the calls are being forwarded, the phisher need only confirm the illegal transaction is legitimate, SecureWorks researcher Don Jackson wrote on the company's Web site. The link for this article located at eWeek is no longer available. . After going through this process, the victim is asked in the e-mail to update their personal informa. researchers, secureworks, uncovered, phishing, attack, tries, trick, victims. . LinuxSecurity.com Team
Apr 30, 2007
•
Hacks/Cracks
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Explore top 10 tips to secure your open-source projects now. Read More