Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 10 articles for you...
67
open sourceinstant messagingsecurity analysisAnalyzing Off The Record Encryption Tool for Pidgin and Adium IM
The digital watchdog Electronic Frontier Foundation (EFF) lent a technical hand to fix security problems in a tool used to encrypt instant messenger conversations using the Adium and Pidgin programs. . The EFF wrote on Thursday that it analyzed the "Off the Record" (OTR) tool, a plugin for Pidgin and Adium for Mac, which are both open-source programs that accommodate multiple instant-messaging protocols into one client. The link for this article located at Network World is no longer available. . The EFF wrote on Thursday that it analyzed the 'Off the Record' (OTR) tool, a plugin for Pidgin and . digital, watchdog, electronic, frontier, foundation, (eff), technical, security. . LinuxSecurity.com Team
Sep 26, 2011
•
Cryptography
83
malwareinstant messagingtrojanSkype Worm Spreading Trojan: Email Harvesting And Click Fraud
A worm targeting Skype's VoIP application is harvesting e-mail addresses and directing users to a range of sites hosting other malicious software, security vendors said Monday. Once a machine is infected, the worm sends a malicious link via instant messages to other users in person's Skype contact list, according to F-Secure's blog. . The link leads to an executable file that downloads a Trojan horse capable of downloading other malicious software, F-Secure said. It then shows a photo of a "lightly dressed" woman. The link also directs users to at least eight Web sites with information about Africa. It's not clear what type of scam or harm those pages intend, but some of the sites have advertising on them, indicating that it might be a click-fraud scam, said Graham Cluley, senior technology consultant for Sophos. Click fraud refers to the various tricks used to get clicks on advertising banners, which generate revenue for Web page owners. The link for this article located at NetworkWorld is no longer available. . The link leads to an executable file that downloads a Trojan horse capable of downloading other mali. targeting, skype's, application, harvesting, e-mail, addresses, directing, users. . LinuxSecurity.com Team
Apr 16, 2007
•
Hacks/Cracks
83
security trendsIT securityinstant messagingGrowing IM Attacks and Image Spam Threaten Security Protocols
Attacks aimed at lightly protected instant messaging systems and spam that replaces text with images in an effort to dupe filtering software are growing in popularity, according to new research released by Postini. . As indicated in Postini's Message Security and Management Update for June, hackers and spammers continue to become more sophisticated in response to more widespread use of IT security applications. Hackers are moving beyond e-mail-borne viruses in favor of IM and Web site attacks, and spammers are using any way they can find to avoid network and endpoint message scanning tools as part of their evolution, researchers said. The link for this article located at eWeek.com is no longer available. . As indicated in Postini's Message Security and Management Update for June, hackers and spammers cont. attacks, aimed, lightly, protected, instant, messaging, systems, replaces, images. . LinuxSecurity.com Team
Jul 14, 2006
•
Hacks/Cracks
67
encryptioninstant messagingprivacyKeep Your Conversations Private With OTR Instant Messaging Encryption
Sometimes encryption isn't enough to keep your conversations private. With standard encryption, it's theoretically possible for someone to steal your secret encryption keys and decipher the conversation. For conversations that need to be kept confidential, the Off-the-Record (OTR) plugin for Gaim saves the day. It leaves no trace of a conversation ever having taken place. . OTR was developed by two security researchers, Ian Goldberg and Nikita Borisov, at the University of California at Berkeley. The software provides standard security features like authentication, to ensure you are talking to the person you think you are, and encryption, so no one can tap into your conversation. In addition, OTR introduces two new security concepts to instant messaging -- deniable authentication and perfect forward secrecy. The link for this article located at NewsForge is no longer available. . OTR was created by a duo of scholars, Peter Swire and Gillian Schwartz, to facilitate secure communication.. OTR Encryption, Secure Communications, Instant Messaging, Privacy Features, Communication Security. . LinuxSecurity.com Team
Oct 13, 2005
•
Cryptography
83
security advisorysocial engineeringphishingYahoo Messenger: Protecting Your Profile from Phishing Risks
While most e-mail users are on guard against viruses, they are far too casual about instant messages, says Sophos security analyst Greg Mastoras. "Virus writers like to exploit low-hanging fruit, and IM is a low-hanging fruit." . The scam works by sending a message from someone on a user's buddy list with a link to what appears to be a Yahoo URL, Akonix reports. Once the user enters credentials on the Web site, the attacker has access to personal information stored in the user's Yahoo Profile.. A deceptive scheme is endangering users of Yahoo Messenger by means of phishing notifications. Remain alert!. Yahoo Messenger Phishing, Instant Messaging Security, User Profiles. . LinuxSecurity.com Team
Mar 29, 2005
•
Hacks/Cracks
83
malwareinstant messagingsecurity threatW32.Funner Worm: Spreading via MSN Messenger Contacts with Security Risks
Called W32.Funner, the worm upon infection attempts to spread itself through the host's MSN Messenger contact list. Apart from altering Windows' host file and adding nearly 1000 URLs, the worm also attempts to send c:\funny.exe to contacts in the Windows Messenger instant message program. . . .. A new worm that attacks MSN Messenger has arrived. Called W32.Funner, the worm upon infection attempts to spread itself through the host's MSN Messenger contact list. Apart from altering Windows' host file and adding nearly 1000 URLs, the worm also attempts to send c:funny.exe to contacts in the Windows Messenger instant message program. Security solutions provider Symantec's website reported that the worm could download files from sites like It scaled up the spread of the worm in the wild, damage and distribution from light to medium within a day. The link for this article located at Techtree News Staff is no longer available. . A new worm that attacks MSN Messenger has arrived.Called W32.Funner, the worm upon infection attempt. called, funner, infection, attempts, spread, itself, through, host's, messenge. . LinuxSecurity.com Team
Oct 12, 2004
•
Hacks/Cracks
74
security advisorybuffer overflowmoderate severityTrillian 0.74i Advisory: Moderate Risk of Buffer Overflow in MSN Module
Security researchers have issued a warning of a flaw in the Trillian cross-platform instant messaging (IM) client that puts users at risk of malicious hacker attacks. . . .. Security researchers have issued a warning of a flaw in the Trillian cross-platform instant messaging (IM) client that puts users at risk of malicious hacker attacks. The vulnerability has been reported in Trillian 0.74i, which is a free version of the product distributed by Cerulean Studios. An advisory from Secunia attached a "moderately critical" rating to the flaw, saying it exists in the MSN Module, which allows the client to connect to Microsoft's chat network. Secunia said the vulnerability is caused by a boundary error within the MSN module and can be exploited to cause a buffer overflow by passing an overly long string (about 4096 bytes) from an MSN Messenger server. The link for this article located at Ryan Naraine is no longer available. . Alert released regarding Trillian vulnerability that can lead to cyber intrusions as a result of buffer overflow in its MSN component.. Trillian Flaw, Buffer Overflow, Instant Messaging Security. . Anthony Pell
Sep 10, 2004
•
Network Security
74
instant messaginglog monitoringJabber technologyMonitoring Logs in Real-Time with Jabber XML Technology Solutions
Jabber, the streaming XML technology mainly used for instant messaging, is well-suited to its most common task. However, Jabber is a far more generic tool. It's not a chat server per se, but rather a complete XML routing framework. This has some pretty far-reaching implications. . . .. Jabber, the streaming XML technology mainly used for instant messaging, is well-suited to its most common task. However, Jabber is a far more generic tool. It's not a chat server per se, but rather a complete XML routing framework. This has some pretty far-reaching implications. Technically speaking, Jabber can act as a router for anything that can be represented in or with XML. Since it's mostly used for online messaging, and since clients for Linux are readily available (GAIM, for example, is a Jabber client, there are many, many more), I'll focus here on ways to use Jabber to send informational system messages to a Jabber client (or clients). The link for this article located at Linux.com - Mike Peters is no longer available. . Jabber enhances system log monitoring through real-time alerts, integration with tools, and customizable bots, promoting effective collaboration and operational efficiency. Log Monitoring, Jabber Technology, XML Routing, System Messages. . Anthony Pell
Jun 14, 2004
•
Network Security
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More