Network Security
security advisory networking
security advisory networking For years, IPv4 was the only proxy type that really mattered for anyone running automation off a Linux box. IPv6 was the protocol everyone said they’d migrate to, but almost nobody actually did. In 2026, that’s finally starting to shift. . The problem is that most admins stick with IPv4 out of habit. They know it; it’s what their tooling defaults to, and they don’t see a reason to change. Some are overpaying for addresses they don’t need. Others would quietly break their scrapers, scripts, or...
Jun 09, 2026
Network Securityopen-source python
open-source python Researchers recently identified another wave of malicious packages on PyPI linked to the broader Mini Shai-Hulud campaign, a worm-like supply chain attack that spread through trusted software packages. On the surface, the packages looked no different from thousands of others published to the repository each week. . Instead of trying to break into a target network directly, the attackers hid malicious code inside software that developers were already using. A few downloads are all it takes....
Jun 09, 2026
Security Vulnerabilities malware linux
malware linux IronWorm steals credentials and uses them to spread beyond the original victim, turning developer access into a supply chain risk. . A new campaign targeting npm has evolved past simple credential theft. Researchers identified IronWorm, a self-spreading threat. It harvests high-value Linux development secrets—SSH keys, cloud tokens, package publishing credentials. One compromised workstation becomes a launchpad for downstream supply chain attacks. This is not a get-in-and-get-out operation....
Jun 08, 2026
Network Securitysystem security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found -1 articles for you...
83
security threatintellectual propertyLinux serversLong-Term Hacking Campaign Targeting Linux Servers: Risks and Threats
Have you heard about the newly uncovered hacking campaign which has been operating successfully against unpatched Linux servers for almost a decade? . Hacking campaigns linked to China have been exploiting vulnerabilities in Linux servers in an operation which successfully stayed under the radar for almost a decade. Detailed by researchers at BlackBerry , the operation, linked to the interests of the Chinese government, is conducting hacking and cyber espionage against a wide array of industries for the purposes of intellectual property theft and data collection. While the overall campaign is multi-platform, a newly uncovered part of it has been exploiting vulnerabilities in Linux since at least 2012 – and without the attackers having to update their offensive capabilities in that time. . Investigate current cyber intrusion efforts attributed to Chinese entities aimed at Linux servers to take advantage of vulnerabilities in security protocols.. Linux exploitation, cyber espionage, hacking threats, security vulnerabilities, data theft. . LinuxSecurity.com Team
Apr 07, 2020
•
Hacks/Cracks
83
academic institutionscyber espionageNorth KoreaNorth Korea's Stolen Pencil: Malicious Chrome Threat to Academics
Computer users are being reminded once again to take care over the browser extensions they install after security experts discovered a hacking campaign that has been targeting academic institutions since at least May 2018.. Researchers at Netscout have warned of a state-sponsored attack dubbed “Stolen Pencil” that is though to originate from North Korea. The state-sponsored attack is relatively unusual for its use a malicious Google Chrome browser extension. The link for this article located at Tripwire is no longer available. . An operation classified as "Phantom Quill" deploys a harmful Firefox add-on aimed at researchers and scholars since 2019.. Malicious Extension, Chrome Hacking, Cyber Threats. . LinuxSecurity.com Team
Dec 06, 2018
•
Hacks/Cracks
83
network intrusionaviation securitycyber espionageChinese Government Officers Charged In Major Hacking Of Aviation Secrets
Federal prosecutors on Tuesday unsealed charges that accused two Chinese government intelligence officers and eight alleged co-conspirators of conducting sustained computer intrusions into 13 companies in an attempt to steal designs for a turbofan engine used in commercial jetliners.. A 21-page indictment filed in US District Court in the Southern District of California said the Jiangsu Province Ministry of State Security, an arm of the People’s Republic of China’s Ministry of State Security, directed the five-year campaign. According to the indictment, between January 2010 to May 2015, the team allegedly used a wide range of methods to break into the computer networks of companies involved in aerospace and turbine manufacturing and Internet and technology services. Their primary goal was stealing data that would allow a Chinese government-owned company to design its own jetliner. With the exception of Capstone Turbines, a Los Angeles-based gas turbine maker, other targeted companies weren’t identified by name and were referred to only as companies A through L.. A 21-page indictment filed in US District Court in the Southern District of California said the Jian. federal, prosecutors, tuesday, unsealed, charges, accused, chinese, government, intelligence. . LinuxSecurity.com Team
Oct 31, 2018
•
Hacks/Cracks
83
data breachextraditioncyber crimeAndrei Tyurin Extradition: JP Morgan Data Breach Charges Unveiled
Georgian officials have extradited Russian citizen Andrei Tyurin to the United States, where he will face charges related to a wide-ranging hacking campaign that targeted the US financial sector and included the 2014 breach of JP Morgan Chase. . The Manhattan US Attorney's office announced Friday that Tyurin was arrested by authorities in the country of Georgia at the request of the United States for his participation in hacking US financial organizations, brokerage firms, financial news publishers, and other companies. From 2012 to mid-2015, the campaign stole personal information of more than 100 million customers of target organizations. The breach at JP Morgan Chase was the largest theft of customer data from any single US financial institution in history with more than 80 million people affected. The link for this article located at DarkReading is no longer available. . The Manhattan US Attorney's office announced Friday that Tyurin was arrested by authorities in the c. georgian, officials, extradited, russian, citizen, andrei, tyurin, united, states, where. . LinuxSecurity.com Team
Sep 11, 2018
•
Hacks/Cracks
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More