Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 9 articles for you...
83
security issuemalware riskcyber threatUnderstanding Malware Risks From Free Download Manager on Linux
We do not often talk about Linux malware because it is often quickly patched up and not exploited much in the wild compared to Windows/macOS. However, there has been a concern regarding the Free Download Manager (a decently popular cross-platform download manager). . While we do not recommend it on our available for Linux, some of our readers have suggested it in the past. And I have used it as well up until now on Windows. So, what is the issue? Free Download Manager is not malware . However, a malicious package for Linux was found, distributed as Free Download Manager. Security researchers at Kaspersky discovered that it existed for at least two years ( 2020-2022 ) without users knowing what they were installing. . Uncover the issues related to Free Download Manager and the potential threats posed by malware for Linux users. Keep yourself updated!. Linux Malware, Security Issue, Download Manager, Cyber Threats, User Concerns. . LinuxSecurity.com Team
Sep 13, 2023
•
Hacks/Cracks
210
security advisoryupdatemalwareWireshark Security Alert: Malware Risk From Packet Capture Files
Maliciously constructed Wireshark packet capture files might be used to distribute malware , providing recipients can be tricked into double clicking file URL fields. A CVE has been assigned to the security issue (now resolved through a recent update) due its potential for harm, despite the fact that some social engineering trickery is required. . Variants of the same attack could potentially be thrown against users of the popular network security tool, widely used by security analysts and penetration testers, whether they use Windows or Xubuntu Linux-based systems. The attack, discovered by security researcher Lukas Euler of Positive Security , is explained in a recent post on GitLab that features proof-of-concept videos. Even though developers of Wireshark normally avoid asking for a CVE to be created for potential security issues that require user interaction, an exception was made in this case because of the “low barrier to entry and level of control” an attacker might gain. The issue, tracked as CVE-2021-22191 , was resolved through a recent update. . Alterations of a breach could target individuals employing popular cybersecurity solutions, increasing the dangers of malware propagation.. Network Attack Vectors, Wireshark Security Risks, Malware Distribution. . Brittany Day
Mar 16, 2021
•
Security Vulnerabilities
77
security advisorymalware riskdnsNCSC Security Advisory: DNS Hijacking Attacks on Home Routers
Have you heard that the NCSC has warned about DNS hijacking threats focusing on home routers? These attacks aim to modify the settings on home routers, potentially via cross-site request forgery (CSRF) web-based attacks, so that they use rogue DNS servers. The end goal is to secretly redirect the user to a phishing page or one capable of installing malware on their machine. . The UK’s National Cyber Security Centre (NCSC) has issued a warning about DNS hijacking threats, as reports emerge of widespread attacks in Brazil affecting 180,000 users. The NCSC posted the advisory on Friday as a follow-up to one issued in January. DNS hijacking attackers typically take control of an authoritative DNS server, change the entries stored there and in so doing covertly redirect users to servers under their control, in a Man in the Middle attack. The link for this article located at InfoSecurity is no longer available. . The UK’s Cyber Security Agency (NCSA) alerts users to potential DNS spoofing risks affecting residential routers, stressing the vulnerabilities involved.. DNS Hijacking, Home Router Attack, NCSC Security Alert, Cybersecurity Threats, Malware Redirection. . LinuxSecurity.com Team
Jul 16, 2019
•
Server Security
83
security risksmalware riskinternet safetyThe Risks Of Browser Extensions And The Privacy Threats They Pose
Your internet browser is a doorway to your computer. Everyday users are installing all manner of browser extensions—small pieces of software that live inside Chrome or Firefox—to optimize their workflow, block ads, or otherwise improve their web experience.. Nearly half of all users of Chrome on desktop use extensions. But some of these add-ons, the access they have, and the supply chain around them, are increasingly being leveraged by hackers to break into millions of peoples’ computers, and inject unwanted adverts, steal passwords, and siphon other sensitive information. The link for this article located at Motherboard is no longer available. . A significant portion of users on the Chrome browser opt to add extensions; however, these plugins can inadvertently allow cybercriminals access to sensitive information. Discover how!. Browser Extensions, Security Risks, User Privacy. . LinuxSecurity.com Team
Nov 15, 2018
•
Hacks/Cracks
79
malware riskbluetooth attackhacking overviewBluetooth Attack on Fitbit: Security Risks and Data Exploits
This is impressive: "An attacker sends an infected packet to a fitness tracker nearby at bluetooth distance then the rest of the attack occurs by itself, without any special need for the attacker being near," Apvrille says. . "[When] the victim wishes to synchronise his or her fitness data with FitBit servers to update their profile ... the fitness tracker responds to the query, but in addition to the standard message, the response is tainted with the infected code. . '[When] the victim wishes to synchronise his or her fitness data with FitBit servers to update their. impressive, attacker, sends, infected, packet, fitness, tracker, nearby, bluetooth. . LinuxSecurity.com Team
Mar 14, 2017
•
Security Projects
77
access controlmalware riskadmin privilegesAssessing Administrative Permissions to Reduce Malware Threats Effectively
A new study shows that CSOs could dramatically lower the risk of malware infection by becoming a lot stingier with the number of company employees given administrator accounts on computers. . The study released Tuesday by enterprise security vendor Avecto indicates that it's time for CSOs to evaluate the use of admin privileges and restrict their use only when required for certain tasks. The link for this article located at Network World is no longer available. . The study released Tuesday by enterprise security vendor Avecto indicates that it's time for CSOs to. study, shows, dramatically, lower, malware, infection, becoming. . LinuxSecurity.com Team
Feb 20, 2014
•
Server Security
78
security advisorymalware riskprinter securityHP LaserJet Pre-2009: Class Action Over Remote Firmware Risks
Goldblatt is the lead plaintiff in a class action lawsuit, filed Thursday against HP in California, claiming that the IT giant should have warned customers about the flaws ahead of time.. In a nutshell, the flaw is a pretty bad one. HP LaserJet printers built before 2009 will accept remote firmware updates without properly checking where they come from. This means that The link for this article located at Wired is no longer available. . A collective legal action asserts that HP deceived consumers regarding defects in LaserJet printers manufactured before 2009, posing significant dangers.. HPLaserJet, Printer Security, Firmware Update, Malware Risk, Class Action. . LinuxSecurity.com Team
Dec 06, 2011
•
Vendors/Products
77
security threatsmalware riskdata lossEC2 Security Concerns: Unauthorized Access And Malware Risks
Using Amazon's EC2 (Elastic Compute Cloud) can pose a security threat to organizations and individuals alike, though Amazon's not to blame, according to researchers from Eurecom, Northeastern University, and SecludIT. . Rather, third parties evidently are not following best security practices when using preconfigured virtual machine images available in Amazon's public catalog, leaving users and providers open to such risks as unauthorized access, malware infections, and data loss. The researchers say similar security vulnerabilities may be present in other public clouds from such providers as Rackspace, IBM, Joyent, and Terremark. The underlying message is that for all the power and opportunity of public clouds, providers and users alike need to approach with caution and embrace best security practices. Cloud infrastructure providers can't be expected to assess the security of every image, bit, and transaction that occurs on their machines any more than an apartment landlord can be responsible for everything that happens within his or her complex -- that is, what tenants do behind closed doors in the spaces they rent. The link for this article located at InfoWorld is no longer available. . Rather, third parties evidently are not following best security practices when using preconfigured v. using, amazon', (elastic, compute, cloud), security, threat, organizations, individua. . LinuxSecurity.com Team
Nov 10, 2011
•
Server Security
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Explore top 10 tips to secure your open-source projects now. Read More