Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found -2 articles for you...
83
cyber threatsrisk managementmalwarePupy RAT Targeting Linux: Defense Strategies for Admins
A resurgence of cyberattacks targeting Linux systems in Asian campaigns through the utilization of the Pupy Remote Access Trojan (RAT) has been observed. The malware's multifunctional nature is a notable characteristic, striking a chord with Linux admins, infosec professionals, internet security enthusiasts, and sysadmins who are likely familiar with the potential threat of versatile malware. . Let's examine the implications of these attacks for admins and security professionals and discuss strategies and tips for mitigating risk. What Are the Security Implications of Pupy RAT? The intricate capabilities of Pupy RAT, including remote command execution, information theft, keylogging, and its ability to evade detection, make it a remarkable tool for cybercriminals seeking to infiltrate and compromise systems in the Asian region. It is a critical reminder for security practitioners of the importance of robust cybersecurity measures in this evolving landscape of cyber threats. As attackers refine their techniques and target less conventional operating systems, the need for vigilant cybersecurity practices and advanced protection mechanisms has never been more important. The implications of these targeted attacks are significant, prompting questions that resonate with the audience. How can security practitioners adapt their defense strategies to combat multifunctional malware like Pupy RAT, mainly when it targets less conventional operating systems such as Linux? What long-term consequences could the exploitation of known vulnerabilities by threat actors have on the cybersecurity landscape, particularly in regions increasingly becoming targets of such attacks? How Can I Protect Against Threats Like Pupy RAT? To protect against attacks like Pupy RAT, organizations and individuals must keep systems updated , employ advanced threat detection solutions, and educate users on the risks of phishing and social engineering tactics. This guidance underscores the need for proactive cybersecuritypractices, robust protection mechanisms, and ongoing education to effectively counter the multifaceted risks posed by such malware. We also emphasize the need to remain informed about the evolving threat landscape and the significance of maintaining a robust cybersecurity posture. Our Final Thoughts on Pupy RAT Linux Malware The resurgence of Pupy RAT in targeting Linux systems signifies the evolving nature of cyber threats, necessitating the prioritization of advanced protection mechanisms and proactive cybersecurity practices. Security practitioners must remain vigilant, adapt their defenses, and mitigate the impact of targeted attacks by refining their cybersecurity strategies. . The rise of Pupy RAT presents serious threats to Linux security, increasing data breach risks and complicating malware detection and removal efforts. Pupy RAT, Cyber Threats, Malware Protection, Linux Security, Remote Access Trojan. . Brittany Day
Apr 15, 2024
•
Hacks/Cracks
83
malicious packageremote access toolnpm threatMalicious Packages Found in NPM and PyPI: Crypto-Miners and RATs
Security researchers have discovered yet another sizable haul of malicious packages on the open source registries npm and PyPI. These packages, which could cause problems if developers downloaded them without realizing it, can be found here. . It comes with a number of different packages, all of which contain the same malicious package. go file is a Trojan horse programme that was developed to mine cryptocurrency on Linux computers. According to Sonatype, sixteen of these were able to be traced back to the same actor known as trendava, who has since been removed from the npm registry. The total number of packages that have been identified as malicious, suspicious, or proof-of-concept since 2019 has nearly reached 107,000 thanks to the discoveries made by the company’s AI tooling. A new piece of Python malware with capabilities combining those of a remote access tool (RAT) and information stealer was also found by the security vendor. . Explore perilous npm and PyPI modules harboring crypto-miners and RATS that jeopardize developers' safety.. Malicious Packages, Npm Threats, Python Malware, Open Source Security. . LinuxSecurity.com Team
Feb 22, 2023
•
Hacks/Cracks
83
security advisorymalwarecyber threatFBI Warning: Joanap and Brambul Malware Targeting Key Industries
US authorities have provided more details of two pieces of malware which, they said, are used by North Korean hackers to infiltrate computer systems and steal passwords and other data. . The Department of Homeland Security and the FBI said that North Korean hackers have been using both Joanap, a remote access tool (RAT), and Brambul, a Server Message Blockworm, since at least 2009 to target companies working in the media, aerospace, financial, and critical infrastructure sectors. The link for this article located at ZDNet is no longer available. . Cyber operatives from North Korea utilize the malicious software known as Joanap and Brambul to breach various industries and expropriate essential information.. North Korean Malware, Password Theft, Cyber Threat Intelligence. . LinuxSecurity.com Team
May 30, 2018
•
Hacks/Cracks
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Explore top 10 tips to secure your open-source projects now. Read More