Security Vulnerabilities 
malware linux
malware linux IronWorm steals credentials and uses them to spread beyond the original victim, turning developer access into a supply chain risk. . A new campaign targeting npm has evolved past simple credential theft. Researchers identified IronWorm, a self-spreading threat. It harvests high-value Linux development secrets—SSH keys, cloud tokens, package publishing credentials. One compromised workstation becomes a launchpad for downstream supply chain attacks. This is not a get-in-and-get-out operation....
Jun 08, 2026
Network Securitysystem security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found -2 articles for you...
83
security advisorythreat analysisDenial of ServiceWindows XP: Raw Socket Threat Assessment and DoS Concerns
My recent column ridiculing security specialist Steve Gibson's claim that raw-socket functionality slated for Windows XP is a major threat attracted more flames than I can hope to post on this page. Briefly, Gibson predicts that the ability of XP's raw . . . . My recent column ridiculing security specialist Steve Gibson's claim that raw-socket functionality slated for Windows XP is a major threat attracted more flames than I can hope to post on this page. Briefly, Gibson predicts that the ability of XP's raw sockets to send and forward spoofed packets will result in massive denial of service attacks which no one will be able to stop. I say he's loopy. Most e-mail critics claimed that I'd missed Gibson's central point, which is that XP boxes will be used as "zombies" (as the half-tech press likes to call infected clients) to forward packets from a malicious operator, because I'd written: The link for this article located at The Register is no longer available. . Steve Gibson highlights the risks of Windows XP's raw socket capabilities in DoS attacks, but his analysis oversimplifies the complex threat landscape involved. Windows XP Threats, DoS Attack Analysis, Raw Socket Functionality, Steve Gibson Critique. . LinuxSecurity.com Team
Jun 25, 2001
•
Hacks/Cracks
77
security advisorysecurity threatnetwork exploitWindows XP Raw Socket Threat: Security Risks Analyzed by Steve Gibson
Security specialist Steve Gibson has created quite a fracas with his increasingly vocal opposition to the raw-socket connectivity planned for Windows-XP, and upon which he bases predictions of impending chaos for the entire Internet, so he's decided to exploit the very threat he claims will make the Internet permanently unstable.. . .. Security specialist Steve Gibson has created quite a fracas with his increasingly vocal opposition to the raw-socket connectivity planned for Windows-XP, and upon which he bases predictions of impending chaos for the entire Internet, so he's decided to exploit the very threat he claims will make the Internet permanently unstable. The raw sockets which have Gibson so steamed enable a machine to send or capture data independent of the operating system -- quite handy if you're a software developer or an advanced hobbyist. And while it's true that this also enhances the packet-flooding capabilities of a Windows machine by making it easy to spoof packets, it's also true that this function is already included in most other operating systems, and can be added to an existing Win-9x, 'ME, or '2K machine quite easily with a library called WinPcap. All right, we'll allow that there'll be a few s'kiddies who might prefer to use their Win-XP boxes for such purposes. But they can already do so simply by installing Linux and doing a bit of reading. The link for this article located at The Register is no longer available. . Steve Gibson cautions that the raw socket capability in Windows XP might unleash havoc across the web.. Windows XP Exploit, Raw Socket Security, Internet Chaos, Security Threats. . LinuxSecurity.com Team
Jun 12, 2001
•
Server Security
74
DoS attacksecurity riskhacker threatRaw Socket Risks In Microsoft Windows XP Under Scrutiny By Security Experts
The software giant is accused of corporate hubris for issuing a flat denial that its raw socket support in Windows XP is a paradise for zombie hackers Microsoft's assurances that Windows XP will not make it easier for hackers to launch damaging Denial of Service (DoS) attacks across the Internet have been dismissed by the security expert who first alerted the company to the issue.. . .. The software giant is accused of corporate hubris for issuing a flat denial that its raw socket support in Windows XP is a paradise for zombie hackers Microsoft's assurances that Windows XP will not make it easier for hackers to launch damaging Denial of Service (DoS) attacks across the Internet have been dismissed by the security expert who first alerted the company to the issue. The US software giant released a statement last week in which it said Steve Gibson, president of Gibson Research Group, was incorrect to claim that the implementation of "raw sockets" in its Windows XP operating system was a serious mistake. According to Microsoft it will not be possible for a hacker to run malicious software such as Trojan horses on a machine running Windows XP, thanks to the company's "war on hostile code". This means, according to Microsoft, that an XP machine could not take part in a DoS attack. The link for this article located at ZDNet UK is no longer available. . The software giant is accused of corporate hubris for issuing a flat denial that its raw socket supp. software, giant, accused, corporate, hubris, issuing, denial, socket. . Anthony Pell
Jun 11, 2001
•
Network Security
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More