Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 49 articles for you...
81
risk managementprivacy issuesoftware developmentRust Programming Privacy Issue: Sensitive Debug Info Leaks Detected
Rust developers have repeatedly raised concerned about an unaddressed privacy issue over the last few years. . Rust has rapidly gained momentum among developers, for its focus on performance, safety, safe concurrency, and for having a similar syntax to C++. StackOverflow's 2020 developer survey ranked Rust first among the "most loved programming languages." However, for the longest time developers have been bothered by their production builds leaking potentially sensitive debug information. . As Rust's adoption continues to rise, concerns among developers about potential exposure of sensitive debugging information in production environments are increasing.. Rust Programming, Debugging Issues, Data Privacy. . LinuxSecurity.com Team
Apr 04, 2021
•
Privacy
81
Ubuntuprivacy issuedata handlingAzure Ubuntu Instance Sparks Privacy Issues: Customer Outreach Surprise
Security advisor Luca Bongiorni spun up an Ubuntu Linux instance on Azure and was extremely annoyed to receive a sales message from a Canonical representative three hours later. Say what?? Bongiorni openly voiced his frustration, "WHY [did] MICROSOFT FORWARDED TO UBUNTU THAT I SPUN A NEW VM!?!" Customer privacy, what's that?" . It was just another day for Luca Bongiorni, a security advisor for Bentley Systems. He'd just spun up an Ubuntu Linux 18.04 instance on the Microsoft Azure cloud using a corporate sandbox for testing purposes. Three hours later, on Bongiorni's LinkedIn account he received a message from a Canonical sales representative saying, " I saw that you spun up an Ubuntu image in Azure ," and telling him he'd be his "point of contact for anything Ubuntu -related in the enterprise." Say what?? Actually, Bongiorni was a little more "frank" about his annoyance and surprise that a Canonical salesperson had tracked him down on an entirely different service and knew that he had just used Ubuntu on Microsoft Azure. " What the f*** is happening here? WHY [did] MICROSOFT FORWARDED TO UBUNTU THAT I SPUN A NEW VM!?!" Customer privacy, what's that? . Luca Bongiorni shares his concerns regarding data privacy following an unanticipated notification regarding the configuration of his Azure Ubuntu setup.. Azure Cloud, User Privacy, Ubuntu Security. . LinuxSecurity.com Team
Feb 16, 2021
•
Privacy
74
security advisoryprivacy issuelocation trackingCritical 5G Protocol Issues: Location Tracking And Downgrade Risks
A group of researchers have found 11 flaws in 5G protocols, several of which would expose a device’s location and when a user calls or sends texts, compromising privacy and security. Learn more in an interesting Security Today article: . While excitement is growing about the potential capabilities of 5G networks on a global scale, researchers are finding that the next generation of connectivity could come with some major security concerns. During the Association for Computing Machinery’s Conference on Computer and Communications Security in London this week, researchers from Purdue University and the University of Iowa presented 11 security issues in 5G protocols, WIRED reported. Those design issues could have dire consequences for users, allowing hackers to expose a person’s location, track when a user makes calls or sends a text, and downgrade a device’s service to old data networks. The link for this article located at SecurityToday is no longer available. . Scientists uncover major vulnerabilities in 5G systems, revealing risks of geographical monitoring and endangering user confidentiality.. 5G Security Concerns, Location Tracking Issues, Downgrade Attacks. . Brittany Day
Nov 19, 2019
•
Network Security
81
privacy issuesecurity vulnerabilityuser data theftPrivacy Compromised: Smart Speaker Apps Eavesdrop and Phish Users
Privacy is a hot topic in the realm of smart speakers, fromemployees listening in on recordingsand auditorsaccessing user locations. Now, another issue regarding speakers has been raised, after security researchers revealed that apps accepted by the Amazon Alexa and Google Home platforms could be used to phish users and to eavesdrop on them. Learn more in an interesting Engadget article: . Researchers from the firm Security Research Labs created the apps, known as Skills for Alexa and Actions for Google Home, which exploited security vulnerabilities to hack devices, as reported by Ars Technica . SRL created several apps for each platform which appeared to be legitimate skills like a horoscope app, but which actually hid malicious code. The apps were able to collect personal data including passwords, and also to eavesdrop on users even after they thought that the speaker was no longer listening. This worked by the app giving a fake error message which sounded as if it had closed, while it actually it continued operating and taking down a transcript of everything the user said after that point. The link for this article located at Engadget is no longer available. . Studies indicate that Smart Assistant applications are capable of enabling unauthorized listening and fraudulent schemes, thereby jeopardizing user confidentiality.. Smart Speakers, Security Vulnerability, Eavesdropping App, User Data Theft. . LinuxSecurity.com Team
Oct 21, 2019
•
Privacy
81
privacy issueinformation securityuser awarenessTackling Key Privacy Concerns Related to Online Activities and Behaviors
Information mishandling, snooping and location tracking are often the ways in which users find their privacy violated online. Learn about these issues and how to avoid them in a great Security Today article: . Internet is the fastest way of connecting with the world but, unfortunately, it is not the safest one. The internet is full of scams and gambles, and you are on the verge of security risks when you choose to be online. Most internet users are least bothered about their online privacy and are unaware of the plausible risks associated with it. Not only your privacy but your safety is also endangered, especially when you are using the internet to carry out important and secretive tasks like online banking and sharing crucial business files. The link for this article located at Security Today is no longer available. . Delve into significant online privacy concerns and discover effective strategies to protect your personal data in the digital realm.. Internet Safety, Privacy Protection, Secure Browsing, Online Risks. . LinuxSecurity.com Team
Sep 03, 2019
•
Privacy
81
privacy issuedata collectionuser permissionsMore than 1,300 Android Applications Misuse Permissions to Gather Data
Smartphones are a goldmine of sensitive data, and modern apps work as diggers that continuously collect every possible information from your devices. . The security model of modern mobile operating systems, like Android and iOS, is primarily based on permissions that explicitly define which sensitive services, device capabilities, or user information an app can access, allowing users decide what apps can access. However, new findings by a team of researchers at the International Computer Science Institute in California revealed that mobile app developers are using shady techniques to harvest users' data even after they deny permissions. The link for this article located at The Hacker News is no longer available. . Contemporary mobile platforms stipulate application access via permissions, yet numerous applications persist in gathering data without user approval.. data privacy, app security, mobile permissions, unauthorized access, user data collection. . LinuxSecurity.com Team
Jul 09, 2019
•
Privacy
83
data breachprivacy issuesecurity threatQuest Diagnostics: Data Breach Impacts 12 Million Patients
A massive data breach has struck Quest Diagnostics and the information of up to 11.9 million patients has potentially been compromised. . On Monday, the US clinical laboratory said that American Medical Collection Agency (AMCA), a billing collections provider that works with Quest, informed the company that an unauthorized user had managed to obtain access to AMCA systems. Through the Quest contractor, the unknown individual was able to access -- and potentially steal -- Quest patient data including Social Security numbers, medical information, and financial data. The link for this article located at ZDNet is no longer available. . An alarming data leak involving Quest Diagnostics could have affected the private details of nearly 12 million patients.. Patient Data Protection, Healthcare Data Breach, Quest Diagnostics Security. . LinuxSecurity.com Team
Jun 04, 2019
•
Hacks/Cracks
81
privacy issueweb serverfingerprintingBrave Browser Raises Privacy Issues With Client-Hints Standard
Developers of the privacy-focused Brave browser have raised concerns last week about possible user privacy issues in Client-Hints, a new internet standard currently pending approval by the Internet Engineering Task Force (IETF). . The Brave team suggests third-party web servers could abuse Client-Hints to secretly fingerprint and track users across the internet, a side-effect of the protocol's design. The link for this article located at ZDNet is no longer available. . Worries grow regarding the potential for Client-Hints to facilitate user monitoring and device fingerprinting by external servers.. Client-Hints, Brave Browser, User Tracking, Privacy Concerns, Internet Standard. . LinuxSecurity.com Team
May 16, 2019
•
Privacy
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Explore top 10 tips to secure your open-source projects now. Read More