Network Security
security advisory networking
security advisory networking For years, IPv4 was the only proxy type that really mattered for anyone running automation off a Linux box. IPv6 was the protocol everyone said they’d migrate to, but almost nobody actually did. In 2026, that’s finally starting to shift. . The problem is that most admins stick with IPv4 out of habit. They know it; it’s what their tooling defaults to, and they don’t see a reason to change. Some are overpaying for addresses they don’t need. Others would quietly break their scrapers, scripts, or...
Jun 09, 2026
Network Securityopen-source python
open-source python Researchers recently identified another wave of malicious packages on PyPI linked to the broader Mini Shai-Hulud campaign, a worm-like supply chain attack that spread through trusted software packages. On the surface, the packages looked no different from thousands of others published to the repository each week. . Instead of trying to break into a target network directly, the attackers hid malicious code inside software that developers were already using. A few downloads are all it takes....
Jun 09, 2026
Security Vulnerabilities malware linux
malware linux IronWorm steals credentials and uses them to spread beyond the original victim, turning developer access into a supply chain risk. . A new campaign targeting npm has evolved past simple credential theft. Researchers identified IronWorm, a self-spreading threat. It harvests high-value Linux development secrets—SSH keys, cloud tokens, package publishing credentials. One compromised workstation becomes a launchpad for downstream supply chain attacks. This is not a get-in-and-get-out operation....
Jun 08, 2026
Network Securitysystem security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found -2 articles for you...
81
encryptiondata interceptionmonitoringIndia Expands IT Act For Data Surveillance By Ten Agencies
On Thursday, the Indian government gave ten agencies the legal authority "to intercept, monitor or decrypt information generated, transmitted, received or stored in any computer.". The order, approved on December 20 by the Indian Ministry of Home Affairs, is an expansion of India's IT Act of 2000 and effectively gives the Indian government the legal power to snoop on all its citizens' Internet traffic, and the authority to request access to any encrypted information. The link for this article located at ZDNet is no longer available. . India broadens its IT regulations, permitting a decade of agencies to oversee and decrypt the digital communications of its populace.. Data Monitoring, Government Cyber Surveillance, Encryption Laws. . LinuxSecurity.com Team
Dec 23, 2018
•
Privacy
81
online securityinternet privacygovernment authorityHomeland Security Act's Impact on Cyber Surveillance and Hacker Penalties
Internet providers such as America Online could give the government more information about subscribers and police would gain new Internet wiretap powers under legislation creating the new Department of Homeland Security. . .. Internet providers such as America Online could give the government more information about subscribers and police would gain new Internet wiretap powers under legislation creating the new Department of Homeland Security . Amid the debate in Washington last week, provisions of the bill tucked into a section about "cyber-security enhancements" received scant attention. The Senate prepared to vote on the entire legislation Tuesday. Most of the provisions passed the House as part of separate legislation in an overwhelming 385-3 vote during the summer, but they were never considered in the Senate. Many are similar to changes made last year under the USA Patriot Act, which included new laws affecting Internet wiretaps and hacker investigations. One new provision raises possible criminal penalties to life in prison for hackers caught during electronic attacks that cause or attempt to cause deaths. An attack aimed at causing "serious bodily injury" could result in 20 years behind bars. The debate over appropriate penalties for serious hacker attacks has intensified since the Sept. 11 terror attacks. Experts have increasingly focused on Internet threats to important computer systems that control power grids, pipelines, water systems and chemical refineries. "We must not ignore the growing threat of cyber attacks," said Rep. Lamar Smith, R-Texas, who first introduced the proposals as the Cyber Security Enhancement Act. Just a few years ago, hackers vandalized popular commercial and government Web sites, including those for the Pentagon, White House and Senate. But compared with the threat of electronic shutdowns of critical services, those sorts of attacks look more like simple nuisances. Supporters of the sentencing changes for hackers say they eliminate differences with possiblepenalties for other crimes that might also result in deaths. Critics noted that some prosecutors have been accused in past years of exaggerating the scope and financial damages from hacker attacks. The bill also provides greater legal protections for Internet providers, such as AOL or Microsoft Network, to turn over information about their subscribers to government officials during computer emergencies. If companies believe "in good faith" that there is risk of death or injury to any person, they can turn over details about customers -- even their e-mails -- without a warrant. Civil liberties groups, such as the Washington-based Electronic Privacy Information Center, have complained the bill's language allows Internet providers to turn over subscriber information to any government officials, not just investigators. U.S. companies have traditionally refused to act as agents for prosecutors without court-approved warrants, said Chris Hoofnagle, EPIC's legislative counsel. The legislation requires any government officials who obtain such information to report details to Attorney General John Ashcroft within 90 days. It also requires Ashcroft to report results to Congress after one year. Another part of the Homeland Security bill gives U.S. authorities new power to trace e-mails and other Internet traffic during cyber-attacks without first obtaining even perfunctory court approval. That could only happen during "an immediate threat to national security," or during an attack against a "protected computer." Prosecutors would need to obtain a judge's approval within 48 hours. Experts have noted that U.S. law considers as "protected" nearly any computer logged onto the Internet. And civil liberties groups have frequently complained that obtaining permission from a judge is too easy for this type of e-mail tracing; if an investigator merely attests that the information is relevant to an ongoing investigation, a judge can't deny the request. The link for this article located at SecurityFocus is no longeravailable. . New laws enable authorities to access user data from service providers sans subpoenas, igniting debates on personal freedoms.. Cyber Security, Internet Providers, Government Authority, Civil Liberties, Hacker Penalties. . LinuxSecurity.com Team
Nov 22, 2002
•
Privacy
81
data protectioncivil libertiesinternet surveillanceGovernment Surveillance Authority Under Legislative Review
Significant and perhaps worrisome changes in the government's Internet surveillance authority have been proposed by legislators in the wake of the attacks on the World Trade Center and the Pentagon. Indeed, so much is happening so quickly it's hard to keep . . . . Significant and perhaps worrisome changes in the government's Internet surveillance authority have been proposed by legislators in the wake of the attacks on the World Trade Center and the Pentagon. Indeed, so much is happening so quickly it's hard to keep track of the legislative process, let alone follow the ongoing debate between fast-moving law enforcement experts and more cautious civil libertarians. The link for this article located at New York Times is no longer available. . Major revisions in state internet monitoring powers trigger alarms over personal freedoms as laws evolve.. Internet Monitoring,Civil Liberties Reform,Surveillance Authority,Data Protection,Legislative Changes. . LinuxSecurity.com Team
Sep 21, 2001
•
Privacy
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More