Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 22 articles for you...
210
security advisorydenial of serviceinformation leakDebian GNU/Linux 11: Critical Kernel Update Advisory for Security Flaws
The Debian Project has published a massive Linux kernel security update for its Debian GNU/Linux 11 “Bullseye” operating system series to address 19 security vulnerabilities discovered by various security researchers in the upstream Linux 5.10 LTS kernel, which may lead to a privilege escalation, denial of service or information leaks. . Patched in this new Linux kernel security update for Debian GNU/Linux 11 , there’s CVE-2021-4197 , a security vulnerability reported by Eric Biederman in the cgroup process migration implementation, which could allow a local attacker to escalate privileges, as well as CVE-2022-0168 , a NULL pointer dereference flaw found in the CIFS client implementation, which can allow a local attacker with CAP_SYS_ADMIN privileges to crash the system. Also patched are CVE-2022-1016 , a flaw discovered by David Bouman in the netfilter subsystem, which could allow a local attacker to read sensitive information, CVE-2022-1048 , a race condition discovered by Hu Jiahui in the sound subsystem, which could allow a local user with access to a PCM sound device to crash the system or escalate privileges, as well as CVE-2022-1195 and CVE-2022-1198 , race conditions discovered by Lin Ma and Duoming Zhou in the 6pack and mkiss hamradio drivers, which could lead to a use-after-free and allow a local user to cause a denial of service (memory corruption or crash) or escalate privileges. The link for this article located at 9 to 5 Linux is no longer available. . Fedora Linux 36 rolls out essential software upgrades to fix several vulnerabilities, boosting overall security.. Debian Security, Kernel Update, Privilege Escalation, System Integrity. . Brittany Day
May 06, 2022
•
Security Vulnerabilities
210
security advisoryinformation leakkernel updateUbuntu 20.10 LTS Kernel Security Update: Six Flaws Addressed
Canonical has released another Linux kernel security update for Ubuntu to address six vulnerabilities affecting the Linux 5.8 and 5.4 kernels of several Ubuntu releases. Update ASAP to prevent DoS, information leakage and other security threats. . The new Linux kernel security update comes just a week after the last kernel update and is available for Ubuntu 20.10 (Groovy Gorilla), Ubuntu 20.04 LTS (Focal Fossa), and Ubuntu 18.04 LTS (Bionic Beaver) operating system series running Linux kernel 5.8 (Ubuntu 20.10) and Linux kernel 5.4 LTS (Ubuntu 20.04 and Ubuntu 18.04). The link for this article located at 9 to 5 Linux is no longer available. . This latest Linux kernel security patch resolves seven vulnerabilities targeting DoS, data exposure, and various risks. Please ensure to update immediately.. Ubuntu Kernel Update, Linux Security Flaws, DoS Threats. . Brittany Day
Mar 25, 2021
•
Security Vulnerabilities
210
security issueinformation leaklocal privilege escalationLocal Privilege Escalation Threats: 15-Year-Old Linux Bugs and Risks
Researchers have discovered three vulnerabilities capable of granting attackers root privileges on Linux systems if they are able to gain access through other methods. These bugs, which affect the iSCSI kernel subsystem, have existed for more than 15 years. . Similarly, The Zero Day Initiative (ZDI) researchers uncovered another decade and a half old Linux vulnerability affecting ISC BIND servers configured to use GSS-TSIG features. The discovery of old but active bugs underscores the need for open-source maintainers to monitor external modules to ensure they observe the best security practices, according to the ZDI. . Legacy Linux flaws enable local rights escalation and information exposure; vital for developers to remedy vulnerabilities.. Linux Privilege Escalation, Open Source Vulnerability, Kernel Bug, Information Leak Risk. . Brittany Day
Mar 23, 2021
•
Security Vulnerabilities
210
security advisoryinformation leakcode executionNvidia Driver Update: Six Bugs Resolved, Including Code Execution Risk
Nvidia has released a set of security updates to remove six vulnerabilities in the Nvidia GPU Display Driver impacting both Linux and Windows machines. . This week, the tech giant published a security advisory for a total of six bugs in the driver, varying in severity with CVSS scores of between 5.5 and 7.8 and impacting both Windows and Linux machines. The first vulnerability, CVE‑2020‑5962, is found in the Nvidia Control Panel component of the driver, in which a local attacker can corrupt system files, leading to denial of service or privilege escalation. . The recent patch from Nvidia tackles five vulnerabilities in their graphics driver, enhancing protection for users on both macOS and Android platforms.. Nvidia Driver Update, Code Execution Bug, Information Leak Fix, Security Updates, Linux Driver Security. . Brittany Day
Jun 26, 2020
•
Security Vulnerabilities
81
information leakdata breachuser accountsCracked.to: 321,000 Member Database Exposed on Rival Forum
Have you heard about the recent leak affecting the hacking forum Cracked.to? Last Friday the forum's database of 321,000 members and 749,161 unique email addresses was leaked on rival site, RaidForums. Learn the details in this interesting article: . When users of hacking forums turn on each other, expect things to get messy quickly. The latest site to find itself on the receiving end of this phenomenon is Cracked.to which last Friday reportedly found its database of 321,000 members and 749,161 unique email addresses leaked on rival site, RaidForums. We can say that with confidence because by Monday the compromised accounts had become another statistic on the Have I Been Pwned (HIBP) breach database – the industry’s go-to for news of such incidents. The link for this article located at NakedSecurity is no longer available. . In the underground world of digital criminals, betrayal often leads to chaos. Recent reports from prominent forums indicate a significant breach of data. Secrets are spilling.. Hacking Forum Breach, Database Leak, Information Security, Data Exposure. . LinuxSecurity.com Team
Aug 15, 2019
•
Privacy
67
information leakdata protectionencryption riskSide Channel Attacks: Risks to Encryption and Data Security
Brute force attacks on cryptography could take billions of years, which no one has to spare. Maybe you live in a country where rubber hose cryptography is, shall we say, frowned upon. Hacking a target's endpoint is an option, but what if you get caught? Better to use an attack that leaves no forensic traces behind. . Enter side channel attacks. A side channel attack breaks cryptography by using information leaked by cryptography, such as monitoring the electromagnetic field (EMF) radiation emitted by a computer screen to view information before it's encrypted in a van Eck phreaking attack, aka Transient Electromagnetic Pulse Emanation STandard (TEMPEST). Other well-known side channel attacks include spying on the power consumption of an electronic device to steal an encryption key, or acoustic attacks that record the sound of a user's key strokes to steal their passphrase. . Enter side channel attacks. A side channel attack breaks cryptography by using information leaked by. brute, force, attacks, cryptography, billions, years, which, spare, maybe. . LinuxSecurity.com Team
Apr 17, 2019
•
Cryptography
81
information leaksecurity analysissurveillanceIntercept Exposes Privacy Risks In Drone Documentation Leak
It . On Thursday the Intercept published a groundbreaking new collection of documents related to America . The latest breach from Intercept discloses vital information on unmanned aerial vehicles, igniting worries about personal privacy and safety risks.. drone documents, intercept leak, privacy issues, security analysis. . LinuxSecurity.com Team
Mar 14, 2017
•
Privacy
83
security advisoryinformation leakdata breachHacking Team Data Breach Reveals Critical Security Concerns
Hacking Team has warned that a devastating data breach it suffered will allow its spying tools to be used by criminals and terrorists.. The Milan-based security company, which develops surveillance tools for mostly government clients, saw more than 400GB of internal data released on Sunday, including emails, clients lists, financial information and source code. The link for this article located at CSO Online is no longer available. . The Italian cybersecurity firm, Cyber Defense Corp, alerts users about vulnerabilities following a data leak, sparking fears about potential criminal exploitation.. Hacking Team, Data Breach, Cybercrime Tools, Information Security. . LinuxSecurity.com Team
Jul 09, 2015
•
Hacks/Cracks
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Explore top 10 tips to secure your open-source projects now. Read More