Alerts This Week
Warning Icon 1 677
Alerts This Week
Warning Icon 1 677

Stay Ahead With Linux Security News

14.Lock Code WorldMap Esm H350
Network SecurityPrice Tag 1system security Linux network

The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
1 min read Network Security
2.Motherboard Esm H350
Server SecurityPrice Tag 1open-source Linux administration

Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
3 - 6 min read Server Security
20.Lock AbstractDigital Circular Esm H350
Vendors/ProductsPrice Tag 1security breach linux

A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
5 - 10 min read Vendors/Products
30.Lock Globe Motherboard Esm H350
Security Trends Price Tag 1access control multi-tenant

Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
4 - 8 min read Security Trends
5.ShakingHands Esm H350
Vendors/ProductsPrice Tag 1incident response cloud security

Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
4 - 7 min read Vendors/Products
Filter Icon Refine news
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security news

We found -1 articles for you...
83
General Esm H240
Price Tag 1security advisorymalwaretrojan

Anzen: Vulnerability Advisory For Fragrouter Trojan Remote Shell Threat

On October 18, https://www.anzen.com/ was compromised and fragrouter was trojaned. "This release of fragrouter 1.7 is COMPLETELY BOGUS. fragrouter has not been actively maintained for 3 years." ... "The trojan itself is very similar to those recently found in irssi, fragroute, BitchX, OpenSSH, and Sendmail. Embedded in the configure script is a C program that will remotely bind a shell.". . .. On October 18, https://www.anzen.com/ was compromised and fragrouter was trojaned. "This release of fragrouter 1.7 is COMPLETELY BOGUS. fragrouter has not been actively maintained for 3 years."... "The trojan itself is very similar to those recently found in irssi, fragroute, BitchX, OpenSSH, and Sendmail. Embedded in the configure script is a C program that will remotely bind a shell." Date: Mon, 21 Oct 2002 09:31:21 -0400 (EDT) From: This email address is being protected from spambots. You need JavaScript enabled to view it. To: bugtraq@ Subject: fragrouter trojan On October 18, https://www.anzen.com/ was compromised and a trojan was placed at MD5 (fragrouter-1.7.tar.gz) = 8329c34704287a1fb1e5d6f1ba81f456 After being notified by Hank Leininger on October 19, it was subsequently removed. This release of fragrouter 1.7 is COMPLETELY BOGUS. fragrouter has not been actively maintained for 3 years (1.6 being the last proper release), and has since been obsoleted by fragroute. The attacker even went to the lengths of creating a fake CHANGELOG entry, but only adding the trojan code. The trojan itself is very similar to those recently found in irssi, fragroute, BitchX, OpenSSH, and Sendmail. Embedded in the configure script is a C program that will remotely bind a shell. An interesting addition to this version is that it will dynamically decide which IP address in which to connect the shell by grabbing text from a URL, in this case: Contained in this file is the string 'IPDATA210.224.164.100', so it would connect to TCP port 6667 on 210.224.164.100. The owner has been contacted and this port is currently closed. Thanks again to Hank for the initial analysis. The attacker then tried to bait both thelinux-kernel & cisco-nsp lists: http://marc.theaimsgroup.com/?l=cisco-nsp&m=103515530331228&w=2 http://marc.theaimsgroup.com/?l=linux-kernel&m=103505549207211&w=2 Attached is a complete diff against a known-good copy of fragrouter-1.6. Two things of note: 1) Some of the previous trojans responded to the commands 'A', 'D', & 'M' over port 6667, but this one uses 'B', 'G', & 'K'. 2) Included in the trojan is the string: # íéì.Ê . On November 22, www.securezone.org faced a data breach and fileshield was infected, creating major vulnerabilities.. Anzen Compromise, Fragrouter Trojan, Remote Access, Security Threats, Malware Attack. . LinuxSecurity.com Team

Calendar 2 Oct 21, 2002 User Avatar LinuxSecurity.com Team Hacks/Cracks
74
General Esm H240
Price Tag 1security toolsremote shelltrojan detection

Discover Qualys Solutions for Efficient RST.b Trojan Detection & Removal

Utilities for detecting and removing a new Trojan horse that targets Linux systems have been posted on the Internet for free download. The tools, created by managed security provider Qualys, battle a new variant of the Remote Shell Trojan, dubbed "RST.b," . . . . Utilities for detecting and removing a new Trojan horse that targets Linux systems have been posted on the Internet for free download. The tools, created by managed security provider Qualys, battle a new variant of the Remote Shell Trojan, dubbed "RST.b," which creates a backdoor on infected Linux computers, giving a remote attacker full control. RST.b was first discovered in the wild last December by independent security researchers who identified it as a variant of RST, a Linux Trojan announced in September by Qualys. The link for this article located at ComputerUser is no longer available. . Tools designed to identify and eliminate a newly discovered Trojan horse specifically aimed at Linux platforms have been made available for download.. Trojan Detection Tools, Linux Malware Removal, Remote Shell Trojan, Qualys Security Utilities. . Anthony Pell

Calendar 2 Jan 13, 2002 User Avatar Anthony Pell Network Security
Banner 4 1028x280 1708121825 1771600306
83
General Esm H240
Price Tag 1security threatremote shelllinux virus

Uncommon Linux Malware RST.b Emerges as a New Cybersecurity Threat

It has emerged in the last week that another of those rare Linux viruses may be on the loose. And this one has strong similarities to October's Remote Shell Trojan (RST) that was largely dismissed by the Linux community. In a . . . . It has emerged in the last week that another of those rare Linux viruses may be on the loose. And this one has strong similarities to October's Remote Shell Trojan (RST) that was largely dismissed by the Linux community. In a posting to a security mailing list at the end of December, SecurityFocus brought 'RST.b' to the internet community's attention. The researchers warned that the culprit carrying the virus is likely to be "some exploit being passed around, possibly a Secure Shell one". Linux users are advised not to run exploits from unknown sources. The link for this article located at vnunet is no longer available. . Alerted by recent findings, experts warn of a novel Linux malware akin to the Remote Shell Trojan, advising users to remain vigilant.. Linux Malware, Shell Exploit Warning, Linux Security Threats. . LinuxSecurity.com Team

Calendar 2 Jan 03, 2002 User Avatar LinuxSecurity.com Team Hacks/Cracks
83
General Esm H240
Price Tag 1threat analysismalwaresecurity risks

In-Depth Analysis: Linux Remote Shell Trojan Threat Levels

In light of the interest in the recently discovered Linux based Remote Shell Trojan, vnunet.com has uncovered more details of the worm's functionality in a bid to dispel any fear, uncertainty and doubt. Security experts analysing the Trojan have said that . . . . In light of the interest in the recently discovered Linux based Remote Shell Trojan, vnunet.com has uncovered more details of the worm's functionality in a bid to dispel any fear, uncertainty and doubt. Security experts analysing the Trojan have said that it infects Linux Executable and Linking Format (ELF) files, initially surfacing in the /bin directory. It should be noted, however, that infected ELF files will remain fully functional so as to hide the infection. The program displays some virus-like qualities such as self-replication via email. It also installs a backdoor in the infected host, listening on UDP port 5503 or higher. The link for this article located at vnunet is no longer available. . Explore the Linux-based Remote Shell Trojan's capabilities, uncovering its threat to cybersecurity through remote access, data theft, and system manipulation. Linux Trojan, Remote Shell Cyber Threat, Malware Security Analysis. . LinuxSecurity.com Team

Calendar 2 Sep 10, 2001 User Avatar LinuxSecurity.com Team Hacks/Cracks
Banner 4 1028x280 1708121825 1771600306
News Add Esm H340

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here