Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 6 articles for you...
214
malwarenetwork attacksP2P networksNew Rust-Based P2Pinfect Botnet: MIPS Architecture Threat from P2P
The Rust botnet, first discovered in January 2019, is a new type of malware that targets the MIPS processor architecture. The malware works by injecting malicious code into other programs running on vulnerable systems, and it can spread itself across networks using peer-to-peer (P2P) networks. . Researchers first discovered the botnet after it was used to launch attacks against routers connected to the Internet. The researchers found that the Rust botnet could spread through several protocols, including XMPP, HTTP, and IRC. It also includes code for attacking other devices that use the same architecture as those targeted by Mirai malware in 2016. InfoSecurity Magazine explains what sets this variant apart, "Its adoption of a new evasion technique called TracerPid, which spawns a child process to detect dynamic analysis tools, sets this new variant apart. Additionally, P2Pinfect seeks to disable Linux core dumps, presumably as an anti-forensic measure to safeguard crucial information from exposure." Check out the article linked below for more details on this dangerous new malware! . The Rust-based P2Pinfect botnet signals a major evolution in cyber threats, targeting MIPS architecture systems specifically.. Rust Botnet, MIPS Malware, P2Pinfect, Peer-to-Peer Security, Linux Threats. . Brittany Day
Dec 05, 2023
•
IoT Security
78
cybersecurityopen sourcevirtualizationKali Linux 2021.3 Release: New Tools and Better VM Support
Offensive Security has released Kali Linux 2021.3 with a new set of tools, improved virtualization support, and a new OpenSSL configuration that increases the attack surface. . Kali Linux is a Linux distribution designed for cybersecurity professionals and ethical hackers to perform penetration testing and security audits. With this release, the Kali Linux Team introduces the following new features: OpenSSL - Wide compatibility by default New Kali-Tools site - Kali-Tools has had a complete refresh Better VM support in the Live image session - Copy & paste and drag & drop from your machine into a Kali VM by default New tools - From adversary emulation, to subdomain takeover to Wi-Fi attacks Kali NetHunter smartwatch - first of its kind, for TicHunter Pro KDE 5.21 - Plasma desktop received a version bump The link for this article located at Bleeping Computer is no longer available. . Uncover the new capabilities in Kali Linux 2021.3, improving penetration testing utilities and virtual machine integration for cybersecurity professionals.. Kali Linux, Penetration Testing, Cybersecurity Tools, New Features. . LinuxSecurity.com Team
Sep 16, 2021
•
Vendors/Products
210
security advisoryremote code executionnetwork attacksCritical VxWorks Flaws: URGENT/11 Threatens Millions of Devices
Researchers have found 11 serious vulnerabilities in VxWorks, the world's most popular real-time operating system (RTOS) that powers over 2 billion devices including enterprise network firewalls and routers, industrial controllers and medical equipment. Many of the flaws allow attackers to take over devices remotely by just sending network packets, which make them particularly dangerous. . Researchers from IoT security firm Armis, who found the vulnerabilities, dubbed them URGENT/11 due to their widespread impact. The flaws are located in the operating system's TCP/IP stack, a core component that handles network communications, and six of them can result in remote code execution (RCE). "URGENT/11 is serious as it enables attackers to take over devices with no user interaction required, and even bypass perimeter security devices such as firewalls and NAT solutions," the Armis researchers said in their report. "These devastating traits make these vulnerabilities 'wormable,' meaning they can be used to propagate malware into and within networks. Such an attack has a severe potential, resembling that of the EternalBlue vulnerability, used to spread theWannaCrymalware." The link for this article located at CSO Online is no longer available. . Serious security flaws in VxWorks empower remote exploitation, endangering more than 2 billion gadgets. Swift measures required.. VxWorks Vulnerabilities, Remote Exploits, Security Threats. . Brittany Day
Jul 31, 2019
•
Security Vulnerabilities
81
security threatsdata theftcyber espionageChina’s Cyber Espionage And Its Impact On Sensitive Data Safety
Leading into 2015, the cybersecurity community was still reeling from the impact of a destructive attack unlike any other we have seen in terms of visibility, scale, and impact. Already halfway into 2015, there is no shortage of breaches. We have already witnessed major compromises in healthcare, the US government, the Bundestag, and media being attacked by sophisticated adversaries, in most cases, roaming freely on networks for months at a time.. Attackers from China, Russia, North Korea, ISIS, and even potentially friendly governments have dominated the headlines. In case you have your head in the sand, this is not going away anytime soon. Compared to traditional espionage, "cyber espionage," or CNE as the military likes to designate it, has a lower cost of entry, less risk if you are caught or compromised, and can often yield equivalent intelligence to feed an ever-growing set of interested consumers. The link for this article located at Dark Reading is no longer available. . Cyber espionage, driven by nations like China, merges political, economic, and strategic motives, seeking sensitive data and trade secrets for national security and economic dominance. Cyber Espionage, Data Breach, Network Security, Threat Analysis, Sensitive Data Risks. . LinuxSecurity.com Team
Jun 29, 2015
•
Privacy
76
network securitycyber threatscybercrimeKaspersky Lab Presentation on Network Threats in Colombia
The Event was . This year Kaspersky Lab also participated and I had the opportunity to give a presentation about attacks on network devices and network attacks inside of the Colombian Internet space. We also showed how Russian cybercriminal operations work inside the .CO space. Speaking about .CO domains, these recently became very popular, which is why even cybercriminals have begun to use them. The link for this article located at SecureList is no longer available. . Symantec highlighted the risks posed by digital intrusions and hacking operations during a conference focused on .CO websites in Colombia.. Kaspersky Lab Event, Cybercriminal Operations, Network Security, Colombian Cybersecurity. . Alex
Aug 29, 2013
•
Organizations/Events
83
security risksbiometric securityDefcon 2023Defcon 2023 Overview: Biometric Threats and Network Challenges
Even the ATM machines were suspect at this year's Defcon conference, where hackers play intrusion games at the bleeding edge of computer security. With some of the world's best digital break-in artists pecking away at their laptops, sending e-mails or answering cell phones could also be risky. Defcon is a no-man's land where customary adversaries — feds vs. digital mavericks — are supposed to share ideas about making the Internet a safer place. But it's really a showcase for flexing hacker muscle. . This year's hot topics included a demonstration of just how easy it may be to attack supposedly foolproof biometric safeguards, which determine a person's identity by scanning such things as thumb prints, irises and voice patterns. Banks, supermarkets and even some airports have begun to rely on such systems, but a security analyst who goes by the name Zamboni challenged hackers to bypass biometrics by attacking their backend systems networks. "Attack it like you would Microsoft or Linux," he advised. The link for this article located at ChinaBroadcast.ca is no longer available. . Trending discussions at the cybersecurity expo highlighted flaws in facial recognition technologies and cyber intrusions executed by malicious actors.. Defcon 2023, Biometric Hacks, Network Breaches, Digital Security, Hacker Culture. . LinuxSecurity.com Team
Aug 02, 2005
•
Hacks/Cracks
74
networkingnetwork attacksARP spoofingProtecting Your Network Switches From ARP Spoofing Threats
For those who think switched Ethernet environments are sniff-proof, the author offers this warning. Switches may be difficult to sniff, but they are certainly not immune. As is clear from the above sections, one method of sniffing in a switched environment is using ARP spoofing, and the machine that will most probably be ARP spoofed is the gateway.. . .. For those who think switched Ethernet environments are sniff-proof, the author offers this warning. Switches may be difficult to sniff, but they are certainly not immune. As is clear from the above sections, one method of sniffing in a switched environment is using ARP spoofing, and the machine that will most probably be ARP spoofed is the gateway. One thing that can be done is to add the MAC address of the gateway permanently to your ARP cache. This can be done by giving the -s flag to the arp command. Read more about this on the arp man page. Alternatively, you could use the /etc/ethers file for placing the MAC addresses of the important machines to prevent spoofing of those machines. The link for this article located at LinuxJournal is no longer available. . Switched Ethernet improves security over older networks, yet remains susceptible to sniffing and ARP spoofing, underscoring the need for robust protective measures.. Ethernet Security, ARP Spoofing Defense, Switch Security Strategies. . Anthony Pell
Mar 05, 2002
•
Network Security
74
cybersecuritythreat mitigationDDoSExploring DDoS Attacks And Effective Defense Techniques
It's no secret that the Distributed Denial of Service (DDoS) attack is the biggest security threat to commercial networks since the advent of the virus. In fact, hackers are now using viruses as the data delivered by zombies, further complicating DDoS attacks.. . .. It's no secret that the Distributed Denial of Service (DDoS) attack is the biggest security threat to commercial networks since the advent of the virus. In fact, hackers are now using viruses as the data delivered by zombies, further complicating DDoS attacks. And there will be no end to the creative ways hackers will use DDoS methods to take major Web servers down. In response to this threat, a whole new industry of counter-DDoS companies has formed. As a news story on our site today shows, these companies are banding together with McAfee to create better integrated products to counter these attacks. When it comes to Internet security, there's no better marketing than the fear of some future unknown attack. Faced with the dread of DDoS, administrators will make sure that they buy the latest and greatest products to thwart the attacks, just as they do with antivirus software. The link for this article located at ComputerUser is no longer available. . DDoS assaults pose a significant risk to cybersecurity, growing increasingly sophisticated as innovative defenses are introduced.. DDoS Attack, Network Protection, Cybersecurity Solutions. . Anthony Pell
Aug 23, 2001
•
Network Security
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Explore top 10 tips to secure your open-source projects now. Read More