Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 20 articles for you...
82
data securityencryptionprivacy lawECHR Rules Against Backdoor Encryption And Data Surveillance Laws
The European Court of Human Rights (ECHR) has made a major decision , ruling that laws requiring weakened encryption and extensive data retention violate the European Convention on Human Rights. In a recent case involving Russia's demand for Telegram to provide encryption assistance, the Court stated that such legislation cannot be considered necessary in a democratic society. . This landmark ruling has significant implications for data surveillance legislation across Europe, including the proposed Chat Control and the UK government's Online Safety Act, which aim to weaken encryption for the purpose of scanning digital communications for illegal content. What Are the Security & Privacy Implications of This Decision? The ECHR's decision carries profound implications for security practitioners and privacy-conscious individuals. The ruling highlights the importance of encryption for maintaining privacy and security in a democratic society. It questions the legitimacy of governments' attempts to weaken encryption for the sake of law enforcement and surveillance, as it ultimately compromises the protection and privacy of all users. Weakened encryption could have significant security consequences. Ransomware attacks targeting operational technology (OT) systems, such as those used in power plants and water treatment facilities, may become more prevalent. While traditional ransomware attacks have primarily focused on financial gain, the prospect of ransomware specifically designed to disrupt critical infrastructure's operational capabilities poses a new and alarming threat. Criminal groups, as well as nation-state attackers, could exploit these vulnerabilities, potentially causing physical harm and societal chaos. These implications prompt critical questions about the long-term consequences of backdoored encryption. Will weakened encryption actually lead to improved security, or will it create more vulnerabilities for criminals to exploit? Moreover, will governments be able to maintain control overthe technology needed to exploit these backdoors, or are they unintentionally opening the door for hostile actors to wreak havoc? As security practitioners, we must consider the potential impact on our work and be mindful of the broader implications. The ECHR's ruling becomes a rallying point for privacy advocates and those who understand the importance of encryption in safeguarding individual freedoms. It empowers us to push back against intrusive surveillance measures and fight for strong encryption standards. Additionally, this ruling resonates beyond legal frameworks and poses broader challenges for international cooperation on data security and privacy. With varying approaches to encryption laws across different countries, achieving a harmonized approach becomes more complex. This fragmentation can lead to confusion and exploitation by malicious actors seeking refuge in countries with lax encryption regulations. Our Final Thoughts on The ECHR's Decision The ECHR's decision on backdoored encryption serves as a critical reminder of the significance of encryption in safeguarding our privacy and security. It challenges governments, security practitioners, and the technology industry to balance collective safety and individual rights. As security professionals, it is our responsibility to advocate for strong encryption, subvert unwarranted surveillance measures, and ensure the protection of our digital infrastructure and personal data. . This landmark ruling has significant implications for data surveillance legislation across Europe, i. european, court, human, rights, (echr), major, decision, ruling, requiring. . Brittany Day
Feb 16, 2024
•
Government
81
privacy lawconsumer choicecookie blockingAd Industry Groups Urge California AG to Modify Cookie Blocking Rules
Five ad industry groups have asked California Attorney General Xavier Becerra to change stipulations about cookie-blocking in the state’s impending, far-reaching, almost-GDPR-but-not-quite privacy law, which goes into effect in the new year. What is your opinion on this request? Learn more: . It’s for the sake of consumer choice, they said. Initially, the language in their letter seemed to be requesting a ban on privacy tools such as extensions that block ads and tracking scripts, but the comments turned out to be asking for something a bit more nuanced than that: MediaPost reporter Wendy Davis later said that the groups clarified, saying that they only want the AG to prohibit browsers from blocking the industry’s opt-out cookies AdChoices as opposed to all cookies. The five groups submitted 13 pages worth of comments to the Office of the Attorney General (OAG) on Friday – the last day that comments were still being accepted in the rule-making run-up to the enactment of theCalifornia Consumer Privacy Act (CCPA). The link for this article located at Naked Security is no longer available. . Marketing organizations are advocating for modifications to cookie-restriction guidelines established by California's recent consumer privacy legislation.. Cookie Blocking, California Privacy Law, Consumer Choice, Advertising Regulation, Privacy Tools. . LinuxSecurity.com Team
Dec 11, 2019
•
Privacy
81
data protectionprivacy lawprivacy rightsConsumer Online Privacy Rights Act: Enforcing Data Protection Policy
Pressure is gathering for a federal privacy law in the US with the introduction of a second bill that would protect consumer data. The Consumer Online Privacy Rights Act from Washington Senator Maria Cantwell not only outlines strict privacy and security rules, but also establishes a dedicated FTC office to enforce them. Cantwell also pointed out in her Bill announcement that it defines privacy as a right in federal law. How do you feel about this bill? Learn more: . The proposed law would prevent companies from mishandling data to cause individuals harm. They’d also have to hand over a copy of the data to the individual owning it at their request and name any third party that they’d given it to. They’d also have to delete it when asked. Companies would need to publish clear privacy policies, and they’d need to get a person’s consent before weakening their privacy measures. The consent measures are pretty close to those under the California Consumer Protection Act (CCPA) that comes into effect on 1 January 2020, in that they require companies to get permission to process someone’s data and allow individuals to opt-out of having their data transferred to others. The link for this article located at Naked Security is no longer available. . The introduced regulation aims to stop businesses from abusing data and guarantee the safeguarding of user rights.. Federal Privacy Law, Consumer Data Rights, Data Protection Regulations. . LinuxSecurity.com Team
Nov 29, 2019
•
Privacy
81
law enforcementprivacy lawfacial recognitionCalifornia Prohibits Use of Facial Recognition on Police Body Cameras
On Tuesday, California passed into law a three-year block of the use of facial recognition in police bodycams that turns them into biometric surveillance devices. What are your thoughts on this? Learn more in a great Naked Security article: . This isn’t surprising, coming as it does from the state with the impending, expansive privacy law – California’s Consumer Privacy Act (CCPA) – that’s terrifying data mongers. As it is, in May, San Francisco became the first major US city to ban facial recognition . It might well be a tech-forward metropolis, in a state that’s the cradle of massive data gobbling companies, but lawmakers have said that this actually confers a bit of responsibility for reining in the privacy transgressions of the companies headquartered there. The link for this article located at NakedSecurity is no longer available. . New York enacts legislation prohibiting the use of AI in surveillance tools, emphasizing critical concerns over civil liberties.. facial recognition, privacy law, California legislation, biometric data. . LinuxSecurity.com Team
Oct 10, 2019
•
Privacy
81
data protectiondata privacyprivacy lawSurveys Show Strong Demand for Federal Data Privacy Regulations
Over two thirds of US consumers think the Government should do more to protect data privacu, and say they're ready for federal regulation similar to GDPR. . A recent survey from Cary, NC-based software analytics company SAS has been asking what data protection measures consumers want. The link for this article located at ZDNet is no longer available. . A significant majority of American shoppers are advocating for the implementation of stricter data privacy laws, highlighting a clear call for reform.. Data Protection, Consumer Privacy, Federal Regulation, GDPR Compliance. . LinuxSecurity.com Team
Jan 22, 2019
•
Privacy
82
privacy lawsecurity challengesCalifornia legislationCalifornia Law Seeks Solutions For IoT Security And Privacy Issues
California is hoping a new law will help fix the security and privacy problems that plague the so-called internet of things, but experts say a lot more needs to be done to seriously tackle the problem.. For numerous companies, security and privacy was an afterthought as they rushed to connect everything and anything to the internet and cash in on the internet of things craze. The link for this article located at Motherboard is no longer available. . A recent legislation in California targets significant concerns surrounding IoT safety and user privacy, yet specialists stress that further measures are essential.. California Law, IoT Security, Privacy Concerns, Security Issues. . Brittany Day
Sep 19, 2018
•
Government
81
data securitydata protectionprivacy lawThe GDPR Ripple Effect On Global Data Security Compliance
The race to comply with the European Union's General Data Protection Regulation (GDPR) by the May 25 deadline is over, but data security and privacy is a marathon, not a sprint. If the ever-evolving regulatory compliance landscape is any indication, GDPR is just the first of many mandates to come.. Although it certainly has been a headache for many organizations — with large firms allocating an average of $20 million to $25 million to become GDPR compliant — the GDPR is the catalyst for a much-needed global, all-encompassing data security and privacy law. This is something we need sooner rather than later.. The CCPA is reshaping consumer data protection and privacy laws worldwide, underscoring the necessity for progressive legal frameworks.. GDPR Compliance, Data Protection, Privacy Regulation, EU Law. . LinuxSecurity.com Team
Aug 24, 2018
•
Privacy
82
data protectionsecurity controlsprivacy lawCCPA: Enhanced Data Control and Security Measures for Californians
California's newly enacted Consumer Privacy Act should have little impact for US organizations that have already implemented measures for complying with the requirements of the European Union's General Data Protection Regulation. But for most others the mandate will likely necessitate a thorough review of their data security controls and in many cases potential updates to them.. California governor Jerry Brown June 28 signed into law, AB 375, the California Consumer Privacy Act (CCPA) of 2018. The statute - widely seen as one of the toughest privacy laws in the country - will give consumers in the state unprecedented control over any personal information about them that a company might have collected. The link for this article located at DarkReading is no longer available. . The General Data Protection Regulation (GDPR) grants individuals within its jurisdiction greater authority over their personal information, shaping data management protocols significantly.. California Consumer Privacy Act, GDPR Compliance, Data Protection Law. . Brittany Day
Jul 04, 2018
•
Government
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Explore top 10 tips to secure your open-source projects now. Read More