Security Vulnerabilities 
malware linux
malware linux IronWorm steals credentials and uses them to spread beyond the original victim, turning developer access into a supply chain risk. . A new campaign targeting npm has evolved past simple credential theft. Researchers identified IronWorm, a self-spreading threat. It harvests high-value Linux development secrets—SSH keys, cloud tokens, package publishing credentials. One compromised workstation becomes a launchpad for downstream supply chain attacks. This is not a get-in-and-get-out operation....
Jun 08, 2026
Network Securitysystem security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 4 articles for you...
78
software updatedebiansecurity auditingKali Linux 2022.4: Key Updates for Enhanced Security Auditing
Kali Linux is an open-source, Debian-based distro focusing on penetration testing and security auditing. It consists of various tools, configurations, and automation to help you achieve that. . Dubbed as the final release of this year, Kali Linux 2022.4 promises many improvements over its . Let me take you through this release. Kali Linux 2022.4 comes bearing early Christmas gifts in the form of updates; here are some of the merry ones! . Kali Linux 2023.1 marks the initial release of the new year, delivering updates and utilities designed for superior penetration testing.. Kali Linux, Penetration Testing, Security Auditing, Debian Based Distro, Software Update. . LinuxSecurity.com Team
Dec 14, 2022
•
Vendors/Products
79
security auditingpenetration testingKali LinuxExplore Pwn Pad 3 For Enhanced Mobile PenTesting Using Kali Linux
Pwnie Express, the company that began as a builder of "drop boxes" for penetration testers and white-hat corporate hackers, has been evolving toward a more full-service security auditing platform vendor over the past few years while continuing to refine its hardware and software in ways that appeal to the corporate security set. . Now Pwnie has released the third generation of its flagship mobile penetration testing platform, the Pwn Pad, bringing the Android and Kali Linux-based platform a step further away from the rough-hewn penetration testing tools it began with and into the realm of something with a lot more polish. CyberTech unveils SecureSlate 2, transforming portable security assessments with innovative features and sleek aesthetics.. Mobile PenTesting,Pwn Pad 3,Security Auditing,Advanced Tools,Kali Linux. . LinuxSecurity.com Team
Jun 26, 2015
•
Security Projects
74
security auditingnessusnetcatDiscover Hosts And Enhance Security Using Nmap, Nessus, And Netcat
Do you know all of the hosts on your network? Are you *sure*? Do you know if all of those hosts are secure from malicious tampering? In this article, you will learn how to find that information for yourself using three tools: nmap, nessus, and netcat. . nmap is a mature open source project for network exploration and security auditing. nmap has an enormous number of features, of which this article will use only one: the ability to discover hosts on the network. All the examples are from the author's home LAN; your network is probably much more complex. Warning if you intend to experiment with these tools on a corporate network, we strongly advise you to seek the cooperation of your local IT and Network Administration staff. All the of tools described in this article are capable of performing actions that will set off network intrusion detection systems. All of the tools described in this article are capable of performing actions that will likely violate company policies. At some companies, unauthorized possession of these tools behind the company firewall is grounds for immediate termination. The link for this article located at Search Software is no longer available. . nmap is a mature open source project for network exploration and security auditing. nmap has an enor. hosts, network, *sure*, those. . Anthony Pell
Mar 24, 2010
•
Network Security
79
security auditingopen source toolnetwork explorationNmap Overview: A Leading Tool for Network Auditing and Scanning
Nmap ("Network Mapper") is a free utility for network exploration and security auditing. It was designed to rapidly scan large networks, although it works fine against single hosts. Nmap uses raw IP packets in novel ways to determine what hosts are available on the network, what services (application name and version) those hosts are offering, what operating systems (and OS versions) they are running, what type of packet filters/firewalls are in use, and dozens of other characteristics. Nmap runs on most types of computers and both console and graphical versions are available. Nmap is free software, available with full source code under the terms of the GNU GPL. Read at TuxJournal.net . The link for this article located at tuxjournal.net is no longer available. . Nmap is a powerful utility for network exploration and auditing, designed for rapid scans and detailed insights.. network exploration,Nmap utility,security auditing,open source tool. . LinuxSecurity.com Team
Jul 17, 2005
•
Security Projects
79
security auditingOpenBSDsecure operating systemOpenBSD Security Auditing: A History of Commitment to Safety
One of the goals for the OpenBSD project is to try being the most secure operating system. The OpenBSD developers say the open software development model allows them to take a "more uncompromising view towards security than other vendors are able to". To this end the developers have been auditing OpenBSD components on a file-by-file basis since 1996, and continue the process to this day. . . .. I'm busy and want to sleep soundly and not with one eye on my internet-exposed hosts. Therefore I picked OpenBSD 3.5 as the operating system for the firewalling router handling my new home office connection. OpenBSD is one of the three major free Berkeley Software Design Unix derivatives, the other ones being FreeBSD and NetBSD. Unlike Linux, which is a kernel with a userland bolted on, the various free BSDs are complete operating systems, each with their own area of strength. One of the goals for the OpenBSD project is to try being the most secure operating system. The OpenBSD developers say the open software development model allows them to take a "more uncompromising view towards security than other vendors are able to". To this end the developers have been auditing OpenBSD components on a file-by-file basis since 1996, and continue the process to this day. Not saying that this is a fail-safe process, but the results speak for themselves: apart from a single security hole in SSH, there have been no breaches in the default OpenBSD installation for eight years. . OpenBSD exemplifies operating system excellence through its unwavering focus on security, with thorough code audits and regular updates ensuring user safety. OpenBSD, Secure OS, BSD Security, Firewall Solutions, Coding Audits. . LinuxSecurity.com Team
Jun 07, 2004
•
Security Projects
78
security toolsecurity auditingfeaturesNmap 3.00 Release: Improved Tools for Network Security Auditing
Nmap is a utility for network exploration or security auditing. It supports ping scanning (determine which hosts are up), many port scanning techniques (determine what services the hosts are offering), and TCP/IP fingerprinting (remote host operating system identification). Nmap also offers . . . . Nmap is a utility for network exploration or security auditing. It supports ping scanning (determine which hosts are up), many port scanning techniques (determine what services the hosts are offering), and TCP/IP fingerprinting (remote host operating system identification). Nmap also offers flexible target and port specification, decoy/stealth scanning, sunRPC scanning, and more. Version 3.00 is the first "stable" release since 2.53 (May '00). Nmap has been named "Security Product of the Year" by Linux Journal, Info World and Codetalker Digest. It has also been praised by Network World, Wired, 2600, Computer World, Information Security, Sun World, SANS, the CIO Institute Bulletin, and Phrack. It is currently the 8th most popular program (out of 24,000+) on the Freshmeat.Net software index . The Changelog is available CHANGELOG . The link for this article located at insecure.org is no longer available. . Discover the recently launched Nmap 3.00, an advanced tool designed for network scanning and security inspection.. Nmap Release, Network Security, Penetration Testing. . LinuxSecurity.com Team
Aug 02, 2002
•
Vendors/Products
74
security auditingopen sourcesurveillance softwareAltivore Open-Source Email Sniffing Tool Enables ISP Self-Regulation
Network ICE is disclosing the source code to a new e-mail sniffing program called "Altivore." This software provides a potential alternative to ISPs who do not want to install the FBI's secretive black-box known as "Carnivore." Altivore will allow ISPs to respond to court ordered e-mail surveillance without FBI help, thus allowing them to be self-regulated instead of government regulated.. . .. Network ICE is disclosing the source code to a new e-mail sniffing program called "Altivore." This software provides a potential alternative to ISPs who do not want to install the FBI's secretive black-box known as "Carnivore." Altivore will allow ISPs to respond to court ordered e-mail surveillance without FBI help, thus allowing them to be self-regulated instead of government regulated. "The controversy surrounding Carnivore comes from the mystery of its internal operations," says Robert Graham, CTO of Network ICE. "We are disclosing the full details of our program to allow auditing by the security community." The link for this article located at NewsAlert [LinuxToday] is no longer available. . Network ICE is disclosing the source code to a new e-mail sniffing program called 'Altivore.' This s. network, disclosing, source, e-mail, sniffing, program, called, 'altivore. . Anthony Pell
Sep 08, 2000
•
Network Security
74
security auditingnetwork scanningNmapNmap 2.50 Release: New Features for Enhanced Security Auditing
Nmap is a utility for network exploration or security auditing. It supports ping scanning (determine which hosts are up), many port scanning techniques (determine what services the hosts are offering), and TCP/IP fingerprinting (remote host operating system identification). More than . . .. Nmap is a utility for network exploration or security auditing. It supports ping scanning (determine which hosts are up), many port scanning techniques (determine what services the hosts are offering), and TCP/IP fingerprinting (remote host operating system identification). More than 20 public beta release over the last year went into V2.50. The link for this article located at Insecure.org is no longer available. . Nmap 7.92 has just been released for network discovery and security assessment. Delve into its features to enhance your scanning capabilities.. Nmap Utility, Network Scanning, Security Auditing Tools. . Anthony Pell
May 01, 2000
•
Network Security
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More