Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 10 articles for you...
81
personal informationprivacy protectionprivacy regulationsCalifornia Attorney General Drafts New Consumer Data Privacy Regulations
EFF and a coalition of privacy advocates have filedcommentswith the California Attorney General seeking strong regulations to protect consumer data privacy. The draft regulations are a good step forward, but the final regulations should go further. What are your thoughts on the draft regulations that were published in October? Learn more: . The California Consumer Privacy Act of 2018 ( CCPA ) created new ways for the state’s residents to protect themselves from corporations that invade their privacy by harvesting and monetizing their personal information. Specifically, CCPA gives each Californian the right to know exactly what pieces of personal information a company has collected about them; the right to delete that information; and the right to opt-out of the sale of that information. CCPA is a good start, but we want more privacy protection from the California Legislature. CCPA also requires the California Attorney General to adopt regulations by July 2020 to further the law’s purposes. In March 2019, EFF submitted comments to the California Attorney General with suggestions for CCPA regulations. In October 2019, the California Attorney General published draft regulations and again invited public comment. . Strengthening the data protection laws in California is crucial for ensuring the security of residents' personal information and upholding their rights.. California Consumer Privacy Act, privacy law advancements, data protection advocates. . LinuxSecurity.com Team
Dec 09, 2019
•
Privacy
81
data breachcustomer informationprivacy regulationsUber : £900,000 Fine Over 2016 Data Breach By UK And Dutch Regulators
Uber has been fined over £900,000 by UK and Dutch watchdogs in relation to a 2016 data breach which impacted customer data.. The UK's Information Commissioner's Office (ICO) fined the ride-hailing service £385,000 for "failing to protect customers' personal information during a cyberattack," while the Dutch Data Protection Authority (Dutch DPA) has imposed a fine of €600.000 (£532,000) for violating Dutch data protection laws. The link for this article located at ZDNet is no longer available. . Authorities in the UK and the Netherlands impose penalties on Uber totaling over £900,000 following a data breach in 2016 that compromised user data.. Uber Data Breach, Privacy Regulation, Customer Protection. . LinuxSecurity.com Team
Nov 27, 2018
•
Privacy
81
data breachsecurity incidentuser credentialsGermany: GDPR Fine for Knuddels Data Breach of 330,000 Credentials
A German privacy regulator has issued its first GDPR fine after a hacker stole unencrypted data on hundreds of thousands of customers of a local chat app.. The Baden-Württemberg Data Protection Authority (LfDI) fined Knuddels just €20,000 ($22,700) despite the firm having stored user passwords and emails in plain text. As a result, hackers were able to make off with 330,000 legitimate credentials, publishing them in September 2018 on Pastebin and Mega. The link for this article located at InfoSecurity is no longer available. . A French authority's initial GDPR enforcement action underscores gaps in security protocols that resulted in a compromise affecting 500,000 user accounts.. GDPR Compliance, Data Protection, Privacy Regulations. . LinuxSecurity.com Team
Nov 26, 2018
•
Privacy
81
data protectionconsumer privacyprivacy regulationsConsumer Data Protection Act: 20-Year Jail for Execs Mishandling Privacy
Mark Z, how do you feel about orange? Like, say, in a jumpsuit style? Kidding! No court has found that you, the Facebook CEO, has purposefully misled the government about how your company did/did not protect consumers’ data during, say, the multifaceted, ever-unfolding, Cambridge Analytica privacy debacle.. Senator Ron Wyden’s on the case, though, and has now put on the table a bill that would throw execs into jail for up to 20 years if they play loosey-goosey with consumer privacy. Under his proposed bill, introduced on Thursday and called the Consumer Data Protection Act, execs who knowingly mislead the Federal Trade Commission (FTC) about how their companies protect consumer data could face up to 20 years in prison and $5 million fines. The link for this article located at Naked Security/Sophos is no longer available. . Senator Ron Wyden's bill could jail executives for mishandling consumer data, enhancing privacy accountability.. Data Protection Act, Executive Accountability, Consumer Privacy, Privacy Breaches, Privacy Regulations. . LinuxSecurity.com Team
Nov 05, 2018
•
Privacy
81
data protectionprivacy regulationsprivacy complianceMicrosoft’s 440-Strong Privacy Team Tackles Evolving Laws Worldwide
Executives from Microsoft and Google on Thursday gave a glimpse into the size of their privacy organizations, which are required for the companies to try to avoid running foul of complicated U.S. privacy regulations and prepare for changes coming to privacy laws around the globe. . Microsoft has 40 people fully dedicated to working on privacy issues and another 400 who might spend some time on privacy, said Michael Hintze, associate general counsel at Microsoft. He spoke Thursday during a Law Seminars conference in Seattle. The link for this article located at Network World is no longer available. . Apple has established a focused cybersecurity unit and initiatives to address changing international data protection laws.. Privacy Compliance, Data Protection, Microsoft Governance, Evolving Regulations. . LinuxSecurity.com Team
Dec 09, 2011
•
Privacy
82
data breachinformation securityidentity theftNew Data Breach Notification Laws in Illinois, Louisiana, and New Jersey
Companies struggling to keep up with a patchwork of state laws related to data privacy and information security have three more to contend with, as new security-breach notification laws went into effect in Illinois, Louisiana and New Jersey on Jan. 1. Like existing statutes in more than 20 other states, the new laws prescribe various actions that companies are required to take in the event of a security breach involving the compromise of personal data about their customers. . For instance, New Jersey’s Identity Theft Prevention Act requires businesses to destroy all unneeded customer data and to notify consumers when sensitive data about them has been accessed by an unauthorized person. The law also limits the use of Social Security numbers on all items that are sent via postal mail. The link for this article located at ComputerWorld is no longer available. . For instance, New Jersey’s Identity Theft Prevention Act requires businesses to destroy all unneed. companies, struggling, patchwork, state, related, privacy, informati. . Benjamin D. Thomas
Jan 09, 2006
•
Government
81
data protectionconsumer rightsbankingPrivacy Group Protests Banking Lobbying with Skywriting Efforts
A privacy group hired a skywriter to write part of the Social Security number of Citigroup's chief executive above New York City on Friday, protesting the bank's lobbying efforts to keep lawmakers from tightening privacy regulations and demonstrating that even the privacy of bank executives is at risk.. . .. A privacy group hired a skywriter to write part of the Social Security number of Citigroup's chief executive above New York City on Friday, protesting the bank's lobbying efforts to keep lawmakers from tightening privacy regulations and demonstrating that even the privacy of bank executives is at risk. Working during a break in cloud cover, an airplane scrawled the first five digits of CEO Charles Prince's Social Security number in 15-story numerals above Citigroup's global headquarters in midtown Manhattan. The Foundation for Taxpayer & Consumer Rights called attention to the bank's backing of a Senate bill that would prevent states from protecting consumers' privacy. The National Consumer Credit Reporting System Improvement Act is up for renewal. Some business-friendly legislators are trying to amend it to prevent states from enacting or enforcing laws that would bar companies from exchanging the personal information of customers with affiliates. California recently passed a bill that bans exactly that practice. The link for this article located at Wired is no longer available. . A privacy group hired a skywriter to write part of the Social Security number of Citigroup's chief e. privacy, group, hired, skywriter, write, social, security, number, citigroup's, chief. . LinuxSecurity.com Team
Oct 26, 2003
•
Privacy
67
IT securitydata encryptionprivacy regulationsEnhancing IT Data Security: HIPAA Compliance and Encryption Techniques
A recent change in federal privacy laws is causing huge numbers of IT departments to examine the steps they take to keep data secure. Although the specific law affects organizations that store or process medical records--hospitals, insurance companies, human-resource departments, and . . . . A recent change in federal privacy laws is causing huge numbers of IT departments to examine the steps they take to keep data secure. Although the specific law affects organizations that store or process medical records--hospitals, insurance companies, human-resource departments, and so on--the change actually touches on an even larger issue, that of keeping any kind of private information truly private, as this reader letter suggests: Fred, I do medical research and am being asked for recommendations about keeping medical data secure. As you probably know, a new set of regulations took effect on April 16 pertaining to privacy of medical records. These are the so-called "HIPAA standards " I'm glad that the new regulations are inspiring people to pay closer attention to this topic and would like to respond to their questions. Very frequently, researchers use portable media (notebook computers, mainly, but also Zip disks and PDA's) to transport their data, and most statistical-analysis software doesn't claim to offer even a modicum of security. So I'm asking for advice. Specifically, what measures do you and your readers recommend to secure sensitive data that resides on a notebook computer? There are several software products that encrypt individual files and create encrypted virtual drives. Which of these products do you recommend, if any? --Paul Falzer Any form of encryption--file-, folder-, partition-, or disk-level--can substantially improve your data security by helping to ensure that only you (or those you authorize) can access the protected data. But picking both the right type of encryption, and then picking the right tool, takes a little digging: As with most things technoid, there's no absolute right or wronganswer. What's right for one circumstance may not be optimal in another. For example, I personally prefer file- or folder-level encryption tools to whole-disk solutions. Although I have a number of sensitive business records on my system that need high-level protection, most of what's on my hard drive isn't worth worrying about. For me, a tool that encrypts everything on a hard drive would simply waste time and CPU cycles in processing these nonprivate files. I prefer to pick and choose exactly what gets encrypted and when. The link for this article located at InformationWeek is no longer available. . Recent shifts in federal privacy legislation have compelled IT departments to enhance data security, encryption, and employee training to handle growing cyber threats. Data Encryption, HIPAA Compliance, IT Security, Medical Data Storage, Privacy Regulations. . LinuxSecurity.com Team
Jun 04, 2003
•
Cryptography
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More