Security Vulnerabilities 
malware linux
malware linux IronWorm steals credentials and uses them to spread beyond the original victim, turning developer access into a supply chain risk. . A new campaign targeting npm has evolved past simple credential theft. Researchers identified IronWorm, a self-spreading threat. It harvests high-value Linux development secrets—SSH keys, cloud tokens, package publishing credentials. One compromised workstation becomes a launchpad for downstream supply chain attacks. This is not a get-in-and-get-out operation....
Jun 08, 2026
Network Securitysystem security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 2 articles for you...
82
national securitygovernment siteusabilityNational Security Site Design Flaws and Usability Issues Revealed
The designers of the Federal Government's National Security Web site, which was set up to educate people about the dangers which the Government claims the country faces, apparently do read what's been written about their site. . .. The designers of the Federal Government's National Security Web site, which was set up to educate people about the dangers which the Government claims the country faces, apparently do read what's been written about their site . Some modifications have been made to the site on January 2 but the text index still displays in an extremely funny way - the left-hand side bar appears at the top of the page and the text which is meant to sit in the centre appears at the bottom! One can't help wondering why a Government which can find several million dollars to run advertisements - which add nothing to the average Aussie's comprehension of the terror threat - cannot pay a decent Web designer a couple of thousand and get a decent page designed. . The Federal Government's National Security website is essential for public access but has design flaws that hinder user experience and accessibility. National Security, Usability Issues, Government Site Design, Web Design Challenges. . Anthony Pell
Jan 03, 2003
•
Government
82
security practicesgovernment siteprivacy policyIncreased Security Measures In Government Sites: Brown University Report
A Brown University analysis of government Web sites found that more federal and state sites are taking security and privacy seriously compared to last year. The Center for Public Policy at Brown analyzed 1,265 federal and state sites, measuring available . . . . A Brown University analysis of government Web sites found that more federal and state sites are taking security and privacy seriously compared to last year. The Center for Public Policy at Brown analyzed 1,265 federal and state sites, measuring available features, variations between state and federal sites, and responsiveness to citizens' information requests. According to the study, 34 percent of the sites now have a visible security policy, up from 18 percent last year. And 43 percent have some form of privacy policy, up from 28 percent two years ago. But the attention to security has led to an increase in restricted areas on government Web sites, some of which require registration and passwords for access, and occasionally fees. Six percent of government sites surveyed had restricted areas and 1 percent had premium features requiring payment. The link for this article located at GCN is no longer available. . A Brown University analysis of government Web sites found that more federal and state sites are taki. sites, brown, university, analysis, government, found, federal, state. . Anthony Pell
Sep 17, 2002
•
Government
82
security advisorydata protectionsecurity issuesInvestigation Into Security Flaws at Government Privacy Portal
U.S. officials scrambled to assure businesses Friday that their confidential data had not been compromised by a government Web site that allegedly contained security holes. Ironically, the Web site encouraged businesses to sign up for a program that would beef . . . . U.S. officials scrambled to assure businesses Friday that their confidential data had not been compromised by a government Web site that allegedly contained security holes. Ironically, the Web site encouraged businesses to sign up for a program that would beef up their own protections for sensitive personal data. The link for this article located at ZDNet is no longer available. . Government representatives provide confidence to enterprises regarding their information protection after a privacy platform encountered reported vulnerability problems.. Government Site Security, Privacy Threats, Data Protection Concerns. . Anthony Pell
Jul 10, 2001
•
Government
82
data exposureconfidential informationgovernment siteU.S. Commerce Website Leaks Sensitive Business Information Publicly
A U.S. government website devoted to helping businesses keep sensitive information private instead revealed confidential information about American firms. A Commerce Department privacy website exposed proprietary information -- such as revenue, number of employees, and the European countries with which . . . . A U.S. government website devoted to helping businesses keep sensitive information private instead revealed confidential information about American firms. A Commerce Department privacy website exposed proprietary information -- such as revenue, number of employees, and the European countries with which the firm does business -- that U.S. companies provided to the government in strict confidence. This information has been publicly accessible since the site went online last year. The link for this article located at Wired is no longer available. . A federal agency website, intended to protect user confidentiality, accidentally disclosed confidential corporate information, prompting alarm over data security.. Data Exposure, Privacy Breach, Business Security, Confidential Data. . Anthony Pell
Jul 06, 2001
•
Government
83
cyber attackDDoSservice disruptionKorean Government Site Forced Offline Due To Hacktivist Activity
Protesters forced the Korean Ministry of Information and Communication's Web site to shut down for 10 hours on Saturday. But was it a mass click-in or a DDoS (Distributed Denial-of-Service) attack which brought the service to its knees? . Protesters forced the Korean Ministry of Information and Communication's Web site to shut down for 10 hours on Saturday. But was it a mass click-in or a DDoS (Distributed Denial-of-Service) attack which brought the service to its knees? The link for this article located at The Register is no longer available. The link for this article located at The Register is no longer available. . A significant incident occurred in South Korea as a government website was down for 10 hours, raising cybersecurity discussions about potential causes and motives. Korean Government Site, Hacktivist Actions, Distributed Denial-of-Service. . LinuxSecurity.com Team
Aug 29, 2000
•
Hacks/Cracks
83
cyber attacksecurity breachhacktivismHacktivists Compromise Myanmar Government Website: Engineers Address Issues
Engineers were still trying on Thursday to restore control of the Myanmar (Burma) government Web site after hacktivists brought it down, the Associated Press reports. . Engineers were still trying on Thursday to restore control of the Myanmar (Burma) government Web site after hacktivists brought it down, the Associated Press reports. The link for this article located at The Register is no longer available. The link for this article located at The Register is no longer available. . Technicians are striving to restore functionality to the Myanmar official website following cyber activist intrusions that led to significant disturbances.. Hacktivism, Myanmar Government, Cybersecurity Threats. . LinuxSecurity.com Team
Aug 03, 2000
•
Hacks/Cracks
74
denial of servicecyber incidentsecurity threatDenial Of Service Attack on Brazilian Government Site March 15
Media reports said that a Brazilian government Web site was brought down on Mar. 15 by unknown hackers. The hackers are said to have used denial-of-service techniques to effectively shut down the Web site of the Brazilian telecommunications regulatory agency. . . .. Media reports said that a Brazilian government Web site was brought down on Mar. 15 by unknown hackers. The hackers are said to have used denial-of-service techniques to effectively shut down the Web site of the Brazilian telecommunications regulatory agency. The link for this article located at ComputerCurrents is no longer available. . On March 15, an extensive cyber assault utilizing DoS methodologies resulted in the shutdown of a prominent Brazilian government website, leading to significant interruptions in services.. DoS Attack, Brazilian Cyber Incident, Network Security Threat. . Anthony Pell
Mar 19, 2000
•
Network Security
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More