Security Vulnerabilities 
malware linux
malware linux IronWorm steals credentials and uses them to spread beyond the original victim, turning developer access into a supply chain risk. . A new campaign targeting npm has evolved past simple credential theft. Researchers identified IronWorm, a self-spreading threat. It harvests high-value Linux development secrets—SSH keys, cloud tokens, package publishing credentials. One compromised workstation becomes a launchpad for downstream supply chain attacks. This is not a get-in-and-get-out operation....
Jun 08, 2026
Network Securitysystem security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found -1 articles for you...
77
security issueOpenSSLenterprise securityUnderstanding Ongoing Weaknesses in Open Source Security Platforms
The cracks in the armor of most enterprise websites are many including recurring holes in OpenSSL, PHP, and WordPress and are largely due to a combination of extensive customizations paired with a shortage of testing and fixing of vulnerabilities when compared with that of long-standing commercial OS software.. CSO Magazine traverses the treacherous terrain of the massive security craters present in today The link for this article located at CSO Online is no longer available. . Explore the vulnerabilities impacting corporate websites due to OpenSSL, PHP, and WordPress weaknesses, highlighting the necessity of robust security measures and updates. Open Source Security, Website Vulnerabilities, PHP Security Flaws. . LinuxSecurity.com Team
Jun 22, 2015
•
Server Security
78
security managementNovellopen source platformNHS Selects Novell for $39 Million IT Security Management
Novell has announced a 21.8 million pounds Sterling ($39 million) contract with the United Kingdom's leading Department of Health agency for a comprehensive set of security, management and infrastructure solutions that will improve delivery of health services to UK citizens. The three year agreement with the National Health Service (NHS) Connecting for Health program lets NHS leverage Novell® solutions across the entire NHS infrastructure, comprising upwards of 600,000 workstations, and will result in substantial cost savings for the NHS. As a strategic partner, Novell will help the NHS deliver its National Programme for IT, improving patient care and services and transforming the way the NHS works. . "NHS Connecting for Health is leading the way in ensuring the NHS is getting the best possible deal for its IT systems and services across the board," said Richard Granger, director general of NHS IT. "This deal with Novell also reduces the barriers for the NHS in using open source, as it secures access to an enterprise class open source platform along with, more importantly, affordable support, maintenance and training to help our NHS staff make the transition." . Novell collaborates with the NHS to upgrade technology infrastructures and bolster cybersecurity measures for elevated patient wellness across the UK.. NHS IT solutions, Novell partnership, healthcare security, open source platform, systems management. . LinuxSecurity.com Team
Dec 05, 2005
•
Vendors/Products
78
security advisoryinternet securityopen source platformEnGarde Secure Linux Finalist for 2003 Well-Connected Award
Guardian Digital today announced EnGarde Secure Linux has been awarded finalist status by Network Computing, a CMP Media LLC magazine, for a 2003 Well-Connected Award in the category of Hardened Linux Solution. The product was chosen for its security, ease of management, depth of strategy, patching facilities, and value. By leveraging the merits of the open source approach, Guardian Digital is able to produce a highly-secure and easy to manage platform that simplifies the complex process of building a secure Internet presence.. . .. Guardian Digital today announced EnGarde Secure Linux has been awarded finalist status by Network Computing, a CMP Media LLC magazine, for a 2003 Well-Connected Award in the category of Hardened Linux Solution. The product was chosen for its security, ease of management, depth of strategy, patching facilities, and value. By leveraging the merits of the open source approach, Guardian Digital is able to produce a highly-secure and easy to manage platform that simplifies the complex process of building a secure Internet presence. GUARDIAN DIGITAL ENGARDE SECURE LINUX NAMED A 2003 FINALIST BY NETWORK COMPUTING FOR WELL-CONNECTED AWARD EnGarde Secure Linux Tops Hardened Linux Solution Category based on its Ability to Provide Cost-effective Internet Security and Ease of Management Operations. ALLENDALE, NJ, APRIL 7, 2003 - Guardian Digital today announced EnGarde Secure Linux has been awarded finalist status by Network Computing, a CMP Media LLC magazine, for a 2003 Well-Connected Award in the category of Hardened Linux Solution. The product was chosen for its security, ease of management, depth of strategy, patching facilities, and value. By leveraging the merits of the open source approach, Guardian Digital is able to produce a highly-secure and easy to manage platform that simplifies the complex process of building a secure Internet presence. "We are very pleased with Network Computing's validation for our hardened Linux Internet security solutions," said Ryan W.Maple, senior vice president, enterprise solutions at Guardian Digital. "As companies rely more on the Internet to realize the requirement to be secure on the Internet today, the need for applications to ease the complex process of maintaining security of networked systems is essential to assess and protect crucial entry points by remote employees, customers and vendors." This year, the winners of the Network Computing Well-Connected Awards will be revealed at an event held on the evening before one of the industry's largest trade shows, NetWorld+Interop 2003 Las Vegas. All Finalists will be highlighted in the May 1st issue of Network Computing and also on Network Computing Online at Network Computing | IT Infrastructure News and Opinion . EnGarde Secure Linux is the industry's most secure open source Linux operating system. Through the use of secured open source applications necessary to build full-featured Web, DNS, and email systems, advanced encryption technologies, hardened Linux kernel, intrusion detection, and a Web-based management system, EnGarde can dramatically reduce support costs while significantly improving security. "To be considered, all finalists are the technology solutions we've recommended in the past 12 months," said Fritz Nelson, VP and Publisher of CMP's Network Computing. "Our editors worked at length to research and test the best offerings in the technology arena during the course of the year. The products selected in the Well Connected Awards are unique because they have been tested by our editors who are current or former IT professionals who understand what our readers want -- products that deliver." About Guardian Digital, Inc. Guardian Digital, the premier open source security company, offers the first secure, open source Internet infrastructure system. Based on Guardian Digital's operating system platform, EnGarde, the company provides enterprises with the software and services necessary for secure computing on the Internet. By leveraging the merits of thecollaborative open source design model, coupled with the company's security and Internet expertise, Guardian Digital solutions maintain the highest degree of security and reliability. Founded in 1999, Guardian Digital is headquartered in Allendale, New Jersey. For additional information, please visit https://guardiandigital.com/ or call 1-866-GD-LINUX. About Network Computing Network Computing ( Network Computing | IT Infrastructure News and Opinion ) published by CMP Media LLC, Manhasset, N.Y., is dedicated to providing critical analysis of technologies, vendors and products to 220,000 IT Managers and Staff who are accountable for strategic technology purchase decisions. In addition to the bi-weekly magazine, Network Computing provides a complete media platform including www.networkcomputing.com, Network Computing Research, and Network Computing Events. In 2002, www.NetworkComputing.com was named American Society of Business Publications Editors (ASBPE) Best 'Original Web Database' category for the Interactive Buyer's Guide and ranked Rob Preston 11th on Adweek's Technology Marketing Influencers Report "Hottest Tech Media editors" list. About CMP Media CMP Media LLC (https://www.informa.com/) is a leading integrated media company providing essential information and marketing services to the entire technology spectrum-the builders, sellers and users of technology worldwide. Capitalizing on its editorial strength, CMP is uniquely positioned to offer marketers' comprehensive, integrated media solutions tailored to meet their individual needs. Its diverse products and services include newspapers, magazines, Internet products, research, direct marketing services, education and training, trade shows and conferences, and custom publishing. Contact Information Jennifer Olson Corporate Communications Guardian Digital, Inc. (201) 934-9230
Apr 16, 2003
•
Vendors/Products
83
incident reportcybersecuritysecurity breachSourceForge Compromise Requires Prompt Password Changes From Developers
The servers of open source development site SourceForge have been compromised. Active subscribers to the site, which is owned by VA Linux, received the following terse message from its administrators. "This week, one of our systems was compromised. We have promptly . . . . The servers of open source development site SourceForge have been compromised. Active subscribers to the site, which is owned by VA Linux, received the following terse message from its administrators. "This week, one of our systems was compromised. We have promptly taken the necessary steps to correct this situation," the message said. "You have been contacted, because according to our log files, you have used SourceForge during the past week and may have used the system that was compromised." SourceForge has asked developers who used the system during the period when it was compromised to change the password but has supplied little in the way of further information on the attack. No information on the crack has been posted on SourceForge's Web site, and news of the security breach was only brought to light after a story was posted to Slashdot. The link for this article located at The Register is no longer available. . GitHub encountered a data leak endangering user accounts, prompting all members to update their passwords for enhanced protection.. SourceForge Breach, Cybersecurity Threats, Open Source Development. . LinuxSecurity.com Team
May 29, 2001
•
Hacks/Cracks
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More