Network Security
security advisory networking
security advisory networking For years, IPv4 was the only proxy type that really mattered for anyone running automation off a Linux box. IPv6 was the protocol everyone said they’d migrate to, but almost nobody actually did. In 2026, that’s finally starting to shift. . The problem is that most admins stick with IPv4 out of habit. They know it; it’s what their tooling defaults to, and they don’t see a reason to change. Some are overpaying for addresses they don’t need. Others would quietly break their scrapers, scripts, or...
Jun 09, 2026
Network Securityopen-source python
open-source python Researchers recently identified another wave of malicious packages on PyPI linked to the broader Mini Shai-Hulud campaign, a worm-like supply chain attack that spread through trusted software packages. On the surface, the packages looked no different from thousands of others published to the repository each week. . Instead of trying to break into a target network directly, the attackers hid malicious code inside software that developers were already using. A few downloads are all it takes....
Jun 09, 2026
Security Vulnerabilities malware linux
malware linux IronWorm steals credentials and uses them to spread beyond the original victim, turning developer access into a supply chain risk. . A new campaign targeting npm has evolved past simple credential theft. Researchers identified IronWorm, a self-spreading threat. It harvests high-value Linux development secrets—SSH keys, cloud tokens, package publishing credentials. One compromised workstation becomes a launchpad for downstream supply chain attacks. This is not a get-in-and-get-out operation....
Jun 08, 2026
Network Securitysystem security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 12 articles for you...
82
data protectiononline securitygovernment regulationLindsey Graham's Proposal Endangers Digital Privacy Regulations
If Sen. Lindsey Graham gets his way, the federal government will launch another attack on online privacy. The South Carolina Republican will ask lawmakers to give Attorney General William Barr and the Department of Justice unchecked access to all of your messaging, file-sharing, and video-sharing tools. That is bad news for just about everyone and a nightmare for those who value digital privacy. . At first glance, Graham’s bill seems innocent enough. After all, it’s called the Eliminating Abusive and Rampant Neglect of Interactive Technologies Act, which seems, on the surface, like a perfectly agreeable proposition. It would assemble a commission to “develop recommended best practices for providers of interactive computer services regarding the prevention of online child exploitation conduct.” Doesn’t everyone want children to be protected? Well, not so fast. The commission’s “recommendations” would then go to the attorney general, who can approve or disapprove what are essentially new regulations. This means unelected officials would be granted vast power to regulate technology and invade our privacy. The link for this article located at Washington Examiner is no longer available. . Johnson's proposal introduces significant risks to digital security by bestowing broad authority to oversee tech operations.. Online Privacy, Government Regulation, Digital Rights, Data Protection, Interactive Technologies. . Brittany Day
Feb 20, 2020
•
Government
81
legislationprivacy rightsgovernment regulationSenate Proposes Temporary Halt on Federal Facial Recognition Technology
Two Democratic senators want to temporarily pause the government’s use of facial recognition technology while a commission develops regulations. . A pair of Democratic senators have introduced legislation to temporarily pause the federal government’s use and purchase of facial recognition technology until Congress passes regulations. Sens. Cory Booker (N.J.) and Jeff Merkley (Ore.) announced the move on Wednesday , reflecting a growing movement to regulate and even ban the use of facial recognition technology by law enforcement, government agencies like Customs and Border Protection and private corporations. The link for this article located at Security Today is no longer available. . Two Democratic congressional members advocate for a freeze on the federal implementation of facial recognition technology until appropriate regulations are established.. Federal Facial Recognition Regulation, Biometric Privacy Laws, Senate Bill Facial Recognition. . LinuxSecurity.com Team
Feb 19, 2020
•
Privacy
81
privacy concernsgovernment regulationfacial recognitionNew Regulation Requires Facial Recognition Scans For Cell Phones In China
The government claims that the new requirement will prevent fraud for citizens, but critics see it as the furthering of invasive surveillance measures. What are your thoughts? Learn more in an interesting Security Today article: . All new cell phone users in China must submit a facial scan to the country’s technology agency after new regulations went into effect on Sunday. The government’s Ministry of Industry and Information Technology said that the new requirement, which will not affect phone numbers already registered before Dec. 1, is meant to protect Chinese citizens’ “legitimate rights and interests in cyberspace,” according to CNN . Officials say that the regulations will prevent fraud, but critics see the measure as yet another way that Chinese officials are removing anonymity from the internet and conducting more intense surveillance of users. The link for this article located at Security Today is no longer available. . Emerging laws mandate biometric screenings for debut smartphone customers in China, sparking alarm over personal data security among residents and activists.. Facial Recognition, Cybersecurity Policy, Privacy Concerns, Surveillance Measures, Government Regulation. . LinuxSecurity.com Team
Dec 04, 2019
•
Privacy
67
encryptioncybersecurityprivacyThe Crypto Wars End: A Win for Digital Privacy and Freedom
The "crypto wars" are finally over - and we've won! On 25th May 2005, Part I of the Electronic Communications Act 2000 will be torn out of the statute book and shredded, finally removing the risk of the UK Government taking powers to seize encryption keys. . The crypto wars started in the 1970s when the US government started treating cryptographic algorithms and software as munitions and interfering with university research in cryptography. In the early 1990s, the Clinton administration tried to get industry to adopt the Clipper chip - an encryption chip for which the government had a back-door key. When this failed, they tried to introduce key escrow -a policy that all encryption systems should leave a spare key with a `trusted third party' that would hand the key over to the FBI on demand. They tried to crack down on encryption products that did not contain key escrow. When software developer Phil Zimmermann developed PGP, a free mass-market encryption product for emails and files, the US government even started to prosecute him, because someone had exported his software from the USA without government permission. In its dying days, John Major's Conservative Government proposed draconian controls in the UK too. Any provider of encryption services would have to be licensed and encryption keys would have to be placed in escrow just in case the Government wanted to read your email. New Labour opposed crypto controls in opposition, which got them a lot of support from the IT and civil liberties communities. They changed their minds, though, after they came to power in May 1997 and the US government lobbied them. However, encryption was rapidly becoming an important technology for commercial use of the Internet - and the new industry was deeply opposed to any bureaucracy which prevented them from innovating and imposed unnecessary costs. So was the banking industry, which worried about threats to payment systems from corrupt officials. In 1998, the Foundation for InformationPolicy Research was established by cryptographers, lawyers, academics and civil liberty groups, with industry support, and helped campaign for digital freedoms. The link for this article located at Politech is no longer available. . The battle over encryption redefined our understanding of data security; delve into the past to see how it influences our freedoms now.. Privacy Protection, Digital Rights, Encryption Policy, Cybersecurity. . LinuxSecurity.com Team
May 25, 2005
•
Cryptography
82
network protectiongovernment regulationsecurity guidelineSurvey: IT Professionals Support Sarbanes-Oxley Security Guidelines
Many security workers feel that government regulations aimed at protecting IT networks from threats are working, according to new survey. . The survey, released Wednesday by security services company RedSiren, indicates that many IT professionals view security guidelines as work-intensive. But they also believe the regulations--such as the Sarbanes-Oxley Act, HIPAA (the Health Insurance Portability and Accountability Act) and the Gramm-Leach-Bliley Act--are making a difference. Of the 300 IT professionals interviewed for the study, 66 percent agreed that the government regulations have improved the overall security of the networks they work on. On the flip side, many of the people surveyed said the federal regulations eat up a bulk of their working hours, leaving less time for other security-related projects. The link for this article located at Matt Hines is no longer available. . The survey, released Wednesday by security services company RedSiren, indicates that many IT profess. security, workers, government, regulations, aimed, protecting, networks, threats. . Joe Shakespeare
Dec 27, 2004
•
Government
82
data protectioncritical infrastructuresystem securityHomeland Security Proposes New Data Protection Rules for Private Sector
The Homeland Security Department has proposed rules under which it would protect systems information it receives from the private sector. The proposed rule explicitly applies to hardware and software that makes up critical-infrastructure systems. The government relies on many such . . . . The Homeland Security Department has proposed rules under which it would protect systems information it receives from the private sector. The proposed rule explicitly applies to hardware and software that makes up critical-infrastructure systems. The government relies on many such systems, such as private voice and data networks, for its daily operations. Companies have been wary of submitting information to the department for several reasons, including the possibility that their competitors could access commercially important data. Some members of Congress and privacy advocates criticized the enacted version of the Homeland Security Act of 2002 as including excessively broad exemptions from the Freedom of Information Act for such information. The proposed rule-making notice, issued Tuesday, is aimed at implementing the Critical Infrastructure Information Act of 2002, which appears in Subtitle B of Title II of the Homeland Security Act. The link for this article located at GCN is no longer available. . The Department of Defense unveils regulations aimed at safeguarding sensitive data from commercial entities, guaranteeing information security.. Homeland Security, Data Protection, Critical Infrastructure Security. . Anthony Pell
Apr 18, 2003
•
Government
81
data protectionprivacy rightscivil libertiesUK Government's Draft Privacy Laws Raise Privacy Concerns
Plans to increase the number of organisations that can look at records of what you do online could lead to widespread abuse of personal information, warn experts. The UK Government this week unveiled a draft list of organisations that will be . . . . Plans to increase the number of organisations that can look at records of what you do online could lead to widespread abuse of personal information, warn experts. The UK Government this week unveiled a draft list of organisations that will be given the right to request information about the web, telephone and fax lives of British citizens under the controversial Regulation of Investigatory Powers Act. Civil liberty campaigners have little faith that government safeguards will be effective in policing the use of sensitive information passed to organisations not connected with law enforcement. The link for this article located at BBC is no longer available. . Efforts to broaden the availability of digital archives could jeopardize your privacy and the safety of your personal information in the United Kingdom.. UK Government, Online Privacy, Data Protection Rights. . LinuxSecurity.com Team
Jun 13, 2002
•
Privacy
82
government regulationsoftware accountabilitysoftware policyUS National Academy of Sciences Calls for Software Security Legislation
An influential body of researchers is calling on the US Government to draft laws that would punish software firms that do not do enough to make their products secure. The US National Academy of Sciences (NAS) has released drafts of a . . . . An influential body of researchers is calling on the US Government to draft laws that would punish software firms that do not do enough to make their products secure. The US National Academy of Sciences (NAS) has released drafts of a report commissioned after 11 September to look at the state of America's computer systems. If the report is acted on the subsequent laws could hurt monopolies like Microsoft, which many say does not do enough to ensure its software is secure. Almost all of the serious virus outbreaks of the last two years can be traced to vulnerabilities in Microsoft products. The link for this article located at BBC News is no longer available. . An influential body of researchers is calling on the US Government to draft laws that would punish s. influential, researchers, calling, government, draft, would, punish. . Anthony Pell
Jan 16, 2002
•
Government
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More