Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 3 articles for you...
72
security advisorynetwork exploitbackdoor attackFortinet: May 2023 Security Advisory Critical: 0-Day Malware Exploit
A suspected China-nexus threat actor exploited a recently patched vulnerability in Fortinet FortiOS SSL-VPN as a zero-day in attacks targeting a European government entity and a managed service provider (MSP) located in Africa. . Telemetry evidence gathered by Google-owned Mandiant indicates that the exploitation occurred as early as October 2022, at least nearly two months before fixes were released. "This incident continues China's pattern of exploiting internet facing devices, specifically those used for managed security purposes (e.g., firewalls, IPS\IDS appliances etc.)," Mandiant researchers said in a technical report. The attacks entailed the use of a sophisticated backdoor dubbed BOLDMOVE , a Linux variant of which is specifically designed to run on Fortinet's FortiGate firewalls. The link for this article located at The Hacker News is no longer available. . State-sponsored cybercriminals from China took advantage of a flaw in Fortinet security software to install malicious code and create backdoors in compromised networks.. Fortinet Vulnerability, Zero-Day Threat, Network Exploit, Malware Attack, Backdoor Threat. . Brittany Day
Jan 23, 2023
•
Firewalls
67
security advisorycriticalFedoraFedora: CVE-2014-3466 Critical: SSLv3 POODLE Threat Explained
Another security vulnerability is hitting the tech (and mainstream!) press, and we want to make Fedora users get straight, simple information. This one is CVE-2014-3466, and the cute nickname of the day is . Here The link for this article located at Fedora Magazine is no longer available. . Uncover insights into the SSLv3 POODLE vulnerability impacting Fedora users and the associated dangers.. SSLv3 Poodle Flaw, Fedora Security, Network Exploit Risk. . LinuxSecurity.com Team
Oct 15, 2014
•
Cryptography
83
security advisorynetwork exploituser accountsVodafone Hack: Femto Cell Exploit for Unauthorized Call Access
THC claims it can listen to any call, use other accounts to make calls and access the victim's voice mail. Hackers have claimed that they have successfully re-engineered a standard consumer hardware available from Vodafone store to intercept calls and gain administrator access into other user accounts. . The Hacker's Choice (THC) said in a blogpost https://thcorg.blogspot.com/2011/07/vodafone-hacked-root-password-published.html that their engineers managed to reverse engineer Femto Cell into a full blown 3G/UMTC/WCDMA interception device. A Femto Cell is a tiny home router which boosts the 3G Phone signal. It is available from the Vodafone Store to any customer for 160 GBP, said THC THC said that engineers exploited a design flaw and got full control of the Vodafone UK network. The link for this article located at CBR Online is no longer available. . Cyber intruders penetrated Vodafone's system vulnerabilities, facilitating phone call monitoring and illegal entry into customer profiles.. Vodafone Network, Call Interception, Hacker Exploit, Femto Cell, Network Security. . LinuxSecurity.com Team
Jul 14, 2011
•
Hacks/Cracks
78
security advisoryRed HatcriticalRed Hat: Kernel Patch Critical for Network Exploit Mitigation
Red Hat has finally managed to release a patch for the previously reported critical Linux kernel vulnerability. Red Hat's initial response was to provide a workaround for the problem that involved blacklisting certain network protocols, preventing the exploit from functioning. Novell has also released updates for openSUSE 10.3 to 11.1, SUSE Linux Enterprise Desktop and SUSE Linux Enterprise Server. . The link for this article located at H Security is no longer available. . Essential notifications from Red Hat and Novell focus on a major vulnerability in the Linux kernel and its associated network security threat.. Kernel Patch, Red Hat Update, SUSE Fix. . LinuxSecurity.com Team
Aug 25, 2009
•
Vendors/Products
74
Black Hat conferencenetwork exploitsecurity ethicsExploring Ethical Concerns Around Michael Lynn's Cisco Exploit Debate
One can only imagine what raced through Michael Lynn's mind the penultimate moment before he saved or sacrificed our nation's critical infrastructure, depending on your take of the researcher's Black Hat Briefings presentation this week. . Lynn's the guy who quit his job at Atlanta-based Internet Security Systems Inc. and defied legal threats from Cisco Systems Inc. to divulge (without much detail) how he reverse-engineered Cisco's Internetwork Operating System [IOS] software to exploit a known flaw in the networking giant's routers. He and Black Hat conference founder Jeff Moss are now off the legal hook, with the two men and two companies having reached an accord late Thursday. But what happened, and why, continues to confound the security community. Initially, ISS consented for Lynn, then with its X-Force research team, to discuss his findings at the annual Las Vegas conference, especially given a patch to prevent the attack had been out for three months. ISS apparently had been working with Cisco on this problem for at least that long. Then Cisco got involved, belatedly, and deployed staff to cut Lynn's PowerPoint pages from 2,300 conference handbooks. Wednesday it issued a restraining order against Black Hat organizers and Lynn. On Thursday, Cisco distributed abridged CDs of proceedings to 2,500 conventioneers. "Considering how important Cisco routers are to the Internet, I can somewhat understand their concerns," Steve Fletcher, a security specialist for a security consulting firm in central Illinois, said in an e-mail exchange. "However, I believe they went to extremes, considering that a patch is supposedly available." The link for this article located at SearchSecurity is no longer available. . The recent verdict by Michael Lynn regarding the vulnerability in Cisco's routing system ignites a debate on moral standards and safety protocols within the technology sector.. Michael Lynn,Cisco Router,Security Ethics,Network Exploit,Black Hat. . Brittany Day
Jul 29, 2005
•
Network Security
79
security advisorybuffer overflowremote accessArkeia Backup Agent Remote Access: Buffer Overflow Exploit Analysis
On February 18th, 2005 "John Doe" posted a remote buffer overflow exploit for the Arkeia Network Backup Client. This vulnerability affected all known versions of the software, going back as far as the 4.2 series (when the company was called Knox). The buffer overflow occurs when a large data section is sent with a packet marked as type 77. The Arkeia Network Backup Client is your typical backup agent; it runs with the highest privileges available (root or LocalSystem) and waits for a connection from the backup server. The Arkeia client and server both use TCP port 617 for communication. According to the SANS ISC, the kids are wasting no time. . A few hours after the exploit was posted, I started to investigate the flaw and port the code to the Metasploit Framework. On the Windows platform, it was possible switch from a plain return address smash to a SEH frame overwrite. This provides room for about 1000 bytes of payload and avoids the heap tricks used in the original exploit. When overwriting the SEH frame, a pop/pop/ret opcode is used to redirect execution to [esp+8], which happens to always point 4 bytes before the smashed SEH function pointer. Since Windows 2003 and Windows XP SP2 block SEH returns to system libraries, the best return address to use is one found inside the executable itself The link for this article located at MetaSploit is no longer available. . The Arkeia Network Backup Agent is under scrutiny due to a buffer overflow vulnerability, allowing malicious actors to execute arbitrary code on systems affected. Arkeia Network, Buffer Overflow, Remote Access Exploit, Backup Software. . LinuxSecurity.com Team
Feb 21, 2005
•
Security Projects
83
security advisorycorporate securitynetwork exploitWorldCom Network Security Flaws Exposed By Hacker Adrian Lamo
A 20-year-old computer hacker who last weekend alerted telecommunications giant WorldCom Inc. about security holes he uncovered inside the company's network (see story) said he enters corporate Web sites without permission to satisfy his curiosity. Adrian Lamo, who has a publicized . . . . A 20-year-old computer hacker who last weekend alerted telecommunications giant WorldCom Inc. about security holes he uncovered inside the company's network (see story) said he enters corporate Web sites without permission to satisfy his curiosity. Adrian Lamo, who has a publicized history of exploring the inner workings of corporate computer networks in search of system weaknesses, said in an interview with Computerworld that he sees himself as helping companies improve their system security by reporting flaws. "I try to engage in harm reduction when I'm inside a computer network," said Lamo. "I've never intentionally done damage in a network." The link for this article located at ComputerWorld is no longer available. . A 21-year-old coder unveiled critical weaknesses in Microsoft’s system, highlighting the necessity of responsible disclosure practices.. WorldCom Security,Hacker Lamo,Exploit Discovery,Network Vulnerabilities. . LinuxSecurity.com Team
Dec 10, 2001
•
Hacks/Cracks
77
security advisorysecurity threatnetwork exploitWindows XP Raw Socket Threat: Security Risks Analyzed by Steve Gibson
Security specialist Steve Gibson has created quite a fracas with his increasingly vocal opposition to the raw-socket connectivity planned for Windows-XP, and upon which he bases predictions of impending chaos for the entire Internet, so he's decided to exploit the very threat he claims will make the Internet permanently unstable.. . .. Security specialist Steve Gibson has created quite a fracas with his increasingly vocal opposition to the raw-socket connectivity planned for Windows-XP, and upon which he bases predictions of impending chaos for the entire Internet, so he's decided to exploit the very threat he claims will make the Internet permanently unstable. The raw sockets which have Gibson so steamed enable a machine to send or capture data independent of the operating system -- quite handy if you're a software developer or an advanced hobbyist. And while it's true that this also enhances the packet-flooding capabilities of a Windows machine by making it easy to spoof packets, it's also true that this function is already included in most other operating systems, and can be added to an existing Win-9x, 'ME, or '2K machine quite easily with a library called WinPcap. All right, we'll allow that there'll be a few s'kiddies who might prefer to use their Win-XP boxes for such purposes. But they can already do so simply by installing Linux and doing a bit of reading. The link for this article located at The Register is no longer available. . Steve Gibson cautions that the raw socket capability in Windows XP might unleash havoc across the web.. Windows XP Exploit, Raw Socket Security, Internet Chaos, Security Threats. . LinuxSecurity.com Team
Jun 12, 2001
•
Server Security
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More