Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 5 articles for you...
81
security advisoryprivacy issueinternet explorerGoogle’s Internet Explorer Cookie Bypass and Its Privacy Implications
Following the revelation that Google and other online marketing companies have been bypassing the mechanism for blocking third-party cookies in Safari, the Internet Explorer development team asked themselves whether Google might be doing the same thing in IE. . As they detail on IEBlog, they discovered that this was the case The link for this article located at H Security is no longer available. . Explore the methods utilized by Google and similar firms to circumvent cookie configurations in Internet Explorer, alongside the implications for user privacy.. Cookie Bypass, Online Privacy, Internet Explorer Tracking. . LinuxSecurity.com Team
Feb 21, 2012
•
Privacy
78
browser securityMicrosoft claimscybersecurity analysisBrowser Security Examination of Microsoft's Internet Explorer Claims
Microsoft is trying again to con people into thinking that Internet Explorer is the safest browser around. It. Microsoft has always been fond of paying analysts to say that its products are best, or having partners release reports showing how their rivals The link for this article located at ZDNet Blogs is no longer available. . An investigation into Microsoft's questionable assertions regarding Internet Explorer's security is conducted. This analysis delves into the benchmarks of browser safety protocols.. Browser Security, Internet Explorer, Microsoft Claims, Cybersecurity Analysis. . LinuxSecurity.com Team
Oct 13, 2011
•
Vendors/Products
83
unauthorized accessmalware analysishacking toolInternet Explorer Attack Code: Major Cyber Threats to Users Revealed
The dangerous Internet Explorer attack code used in last month's attack on Google's corporate networks is now public. The code was submitted for analysis Thursday on the Wepawet malware analysis Web site, making it publicly available. By Friday, it had been included in at least one publicly available hacking tool and could be seen in online attacks, according to Dave Marcus, director of security research and communications at McAfee.. The attack is very reliable on Internet Explorer 6 running on Windows XP, and it could possibly be modified to work on more recent versions of the browser, Marcus said. "The game really changes now that it's hosted publicly," he said. A hacker could use the code to run unauthorized software on a victim's computer by tricking them into viewing a maliciously crafted Web page. The link for this article located at InfoWorld is no longer available. . The widespread distribution of vulnerabilities in an outdated web browser poses significant dangers and challenges to vulnerable networks.. Internet Explorer Attack,Cybersecurity Threat,Public Exploit,Malware Analysis. . LinuxSecurity.com Team
Jan 18, 2010
•
Hacks/Cracks
83
code executionexploitzero-dayCritical Internet Explorer Zero-Day: Cody Pierce Exploit Research
Cody Pierce knew right away what he had found, but he wasn't exactly sure how serious it was. Pierce and his fellow researchers at TippingPoint had spent much of the early part of last year poking around in the ActiveX controls in Windows XP, looking for controls that might be vulnerable. The team had decided at the beginning of the year that with all of the applications and code now running on the Web instead of desktops, ActiveX would be a prime avenue of attack for hackers in the coming months and years, and they wanted to get there before the attackers did. . Now, after weeks of methodical research and a number of false starts, Pierce had found exactly what he'd been hoping for: a zero-day vulnerability in Internet Explorer that allowed arbitrary code execution. For security researchers, identifying a zero-day is as good as it gets. It's the digital equivalent of making the first run of the morning on fresh powder. But finding the vulnerability turned out to be the easy part in this case; now came the frustrating process of constructing a working exploit. The link for this article located at SearchSecurity.com is no longer available. . Jordan Ellis discovers a new vulnerability in Safari, highlighting the complexities in attack crafting and cybersecurity investigation.. Zero-Day Exploit, Internet Explorer Vulnerability, ActiveX Risks. . LinuxSecurity.com Team
Apr 23, 2007
•
Hacks/Cracks
78
security advisorycritical issuebug fixIE: Critical Advisory on 3 Unpatched Flaws and Exploit Mitigation
IE is subject to a trio of unpatched vulnerabilities, security firm Secunia warned yesterday. It warns that two of the three unfixed security bugs are on the "critical" list.< . . .. IE is subject to a trio of unpatched vulnerabilities, security firm Secunia warned yesterday. It warns that two of the three unfixed security bugs are on the "critical" list. These "deadly duo" could be exploited in tandem to bypass security features in Windows XP SP2 and trick users into downloading malicious files. Flaws in the function used to warn users that they are downloading a potentially executable file and a separate bug that can be used to spoof the file extension in the "Save HTML Document" dialog give attackers the opportunity to disguise malicious executable files as innocuous HTML documents. The vulnerabilities, published by hacker cyber flash, have been confirmed on a fully patched system with IE 6.0 and Windows XP SP2. Secunia advises IE users to Disable Active Scripting support and the "Hide extension for known file types" option as workarounds in advance of a patch from Microsoft. Secunia describes the flaws as "moderately critical". The link for this article located at theregister.co.uk is no longer available. . CVE Alliance alerts regarding unresolved vulnerabilities in Firefox, advising users to take proactive steps to mitigate possible threats.. Internet Explorer Risks, Unpatched Issues, Critical Exploits, Security Flaws. . LinuxSecurity.com Team
Nov 18, 2004
•
Vendors/Products
77
security flawurl spoofinginternet explorerHTML Exploits Allow User Redirects In Internet Explorer Security Flaw
A series of HTML-based exploits allow a malicious HTML programmer to direct a user to a different Web site than the one indicated in the user's browser status line. . . .. A series of HTML-based exploits allow a malicious HTML programmer to direct a user to a different Web site than the one indicated in the user's browser status line. Two separate but similar issues affect Internet Explorer. The first, reported by Benjamin Franz of Germany on the Bugtraq mailing list, involves an improper mixture of anchor and table tags, with links to two different sites. On fully-patched Windows systems prior to Windows XP SP2, users hovering over the link will see one URL in the status bar, but when they click on the link, they will be taken to a different address. On Windows XP SP2, clicking on the link brings the user to the same address indicated in the status line. Users hovering just below the link will see the second address, but clicking in this area does not change the browser location. The link for this article located at Larry Seltzer is no longer available. . HTML vulnerabilities can allow malicious actors to trick users into visiting unintended sites, often disguising links to appear legitimate in the browser.. HTML Exploits, URL Spoofing, Internet Explorer Flaws, Web Security, User Redirection. . LinuxSecurity.com Team
Nov 01, 2004
•
Server Security
83
remote accessexploitsecurity riskWindows JPEG Security Risk: Remote Access Exploit Overview
Windows' JPEG vulnerability could be exploited by using Internet Explorer, a security firm claimed Wednesday, making the threat a potentially "devastating" one. But the claim may be more hype than anything, according to some rival security firms. . . .. Windows' JPEG vulnerability could be exploited by using Internet Explorer, a security firm claimed Wednesday, making the threat a potentially "devastating" one. But the claim may be more hype than anything, according to some rival security firms. Finjan Software, a San Jose, Calif.-based security vendor, said its Israel-based Malicious Code Research Center (MCRC) has identified a way for attackers to remotely access a vulnerable PC simply by getting a user to browse a page that contains a malformed JPEG image. Actually, that's not a new attack avenue. When Microsoft originally published details of the JPEG vulnerability, it cited potential vectors like e-mail and the Web, and said that in the case of the latter, "an attacker would have to host a Web site that contains a Web page that is used to exploit this vulnerability. An attacker would have to persuade [users] to visit the Web site, typically by getting them to click a link that takes them to the attacker's site." Most analysts have pegged the likeliest vector as an e-mail message with a malicious JPEG attachment, a route that does require some user interaction. Finjan's pronouncement, that it's possible for hackers to infect machines simply by getting users to browse a specially-crafted Web page, or one embedded, surreptitiously or not, with a bad-seed JPEG, is not likely to change that, said another security expert. The link for this article located at techweb.com is no longer available. . The JPEG flaw in Windows poses critical threats through Internet Explorer; delve into its consequences and potential routes for attack.. Windows JPEG Exploit, Internet Explorer Security, Image Vulnerability, Remote Access Risks. . LinuxSecurity.com Team
Sep 30, 2004
•
Hacks/Cracks
74
malwarephishingwormMiMail Worm Variant Poses Significant Security Threat to PayPal Users
"MiMail attacks have been relentless since the summer of 2003," said Ken Dunham, the director of malicious code for iDefense, a Reston, Va.-based security intelligence firm, in an e-mailed statement. "This is just one of many waves of MiMail attacks we've seen in the wild in the past few months." And that wave won't crest anytime soon, added Dunham. "MiMail stands to be one of the more regular threats to emerge in the first part of 2004." . . .. Yet another variation of the persistent MiMail worm surfaced Wednesday that not only attempts to fool users into handing over credit card information, but resets the home page of Internet Explorer to a site mocking President Bush by comparing his facial expressions to those of a chimpanzee. Although the new variant hasn't been tagged with a definitive label by security firms -- not unusual in the early stages of a worm's discovery -- it's being dubbed MiMail.n by some, MiMail.o by others, and in even MiMail.p. Whatever its name, the worm runs a phishing scam targeting PayPal users. The text of the e-mail, which poses as a message from the electronic payment service, claims that users will receive a credit of 10 percent of their current PayPal account balance if they register for the free offer. When the attached .zip file is opened, however, forms appear asking for a credit card number, its PIN, a Social Security number, and even a mother's maiden name. The link for this article located at SecurityPipeline is no longer available. . Yet another variation of the persistent MiMail worm surfaced Wednesday that not only attempts to foo. 'mimail, attacks, relentless, since, summer, dunham, director. . Anthony Pell
Jan 08, 2004
•
Network Security
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More