Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 1 articles for you...
67
incident responsecybersecuritycryptographyBruce Schneier Takes CTO Role At Co3 Systems For Incident Response
Bruce Schneier, the famed cryptographer and author who recently left his longtime post at BT, has taken a new position as CTO of Co3 Systems, a startup that provides incident response systems. Schneier, a central figure in the security industry for more than two decades, said he is excited about the new challenge ahead.. Schneier left BT last month after spending nearly 15 years at Counterpane, which he helped found, and BT, which acquired the company in 2006. Counterpane was part of the first wave of managed security services providers in the late 1990s and provided monitoring and detection services for its customers. The link for this article located at ThreatPost is no longer available. . Bruce Schneier takes on the role of Chief Technology Officer at Co3 Systems, focusing on enhancing cybersecurity solutions and building strong incident management frameworks. Bruce Schneier, Cybersecurity Innovations, Incident Response Solutions. . LinuxSecurity.com Team
Jan 06, 2014
•
Cryptography
76
professional developmentsecurity industrycareer transitionNavigating Entry Into The Security Industry For Young Professionals
Companies crave experience in their security staffers, dimming prospects for entry-level applicants. Bill Brenner on how a young upstart can break through. If you're young, breaking into the security industry can be hell.. Companies have either suffered a data security breach or live in fear of one. So when they're hiring new IT security personnel, they want years of experience. If you're fresh out of college, that's a problem. Another problem is that security practitioners are control freaks by nature. They have to be, if you stop and think about it. They have a huge responsibility, and delegating some of the work to younger pups is a lot to expect. But here's the problem: The future of information security is in the hands of the youth. That may seem a clichéd statement; so obvious it sounds stupid. But it's a fact. This column isn't an invitation for young upstarts to cry and lament about the disadvantages they have. Instead, it's about a few things you can do to break through and make it in the industry. Think of it as suggestions for becoming a security rock star, which you almost have to be to make a difference these days. This morning I'm at Security B-Sides Boston, listening to a talk from someone who is fighting this battle right now. Joseph Sokoly, a security analyst at NetBoundary, recently gave a talk at the Austin, Texas B-Sides event about the troubles of being young in the security industry. This time, he's in Boston giving an update on where his career trajectory has taken him in the weeks since then. The link for this article located at CIO Magazine is no longer available. . Entering the security field can present hurdles for those unfamiliar with the landscape. Delve into effective techniques to navigate entry and advance your professional journey.. Entry Level Security, Career Transition, Young Talent, Security Careers. . Alex
Apr 26, 2010
•
Organizations/Events
78
market insightssecurity industryattendance trendsRSA Conference 2023: Trends, Insights And Exhibitor Feedback
Last week was the RSA Conference, easily the largest information security conference in the world. More than 17,000 people descended on San Francisco's Moscone Center to hear some of the more than 250 talks, attend I-didn't-try-to-count parties, and try to evade over 350 exhibitors vying to sell them stuff. Talk to the exhibitors, though, and the most common complaint is that the attendees aren't buying. Schneier makes an interesting comparison of anti-lock brakes to security products near the end of the article that sheds new light on how the security industry is evolving. Do you feel this is for better or worse?. The link for this article located at Wired is no longer available. . Investigating the transformation of the defense sector as key symposiums encounter obstacles.. RSA Conference, Industry Trends, Security Products, Exhibitor Feedback. . LinuxSecurity.com Team
Apr 17, 2008
•
Vendors/Products
74
malicious codeanti-virusconsumer trustAddressing Anti-Virus Concerns In Consumer Security Practices
One has to wonder how the anti-virus industry sleeps well at night. On one hand, it purports to serve the world by defending our computers and networks from any number of electronic critters and malicious code. On the other hand, sometimes its "cure" is worse than the problem its companies and products allegedly treat. Add to that a decades-old concern over business, market share, and publicity, and you have all the ingredients for a confused industry, product, and service. This situation regularly benefits the antivirus software industry and victimizes its customers. . . .. One has to wonder how the anti-virus industry sleeps well at night. On one hand, it purports to serve the world by defending our computers and networks from any number of electronic critters and malicious code. On the other hand, sometimes its "cure" is worse than the problem its companies and products allegedly treat. Add to that a decades-old concern over business, market share, and publicity, and you have all the ingredients for a confused industry, product, and service. This situation regularly benefits the antivirus software industry and victimizes its customers. Let's start with malicious code outbreaks in general. Unlike hurricanes and tsunamis, there is no standard way of naming malicious code -- and thus is the greatest problem facing the antivirus industry. Gone are the days when simple names like "Jerusalem", "Michaelangelo" and "Stoned" were accepted and used by all antivirus vendors and their products. Today, what one company calls "Worm_Minmail.R" another calls "W32.Novarg" -- someone else calls it "MyDoom.A@m" and another may classify the same thing as "W32/MyDoom." What is needed is a return to industry-wide nomenclature for malicious code that can be used by all vendors in describing their products and making the reporting, analysis, and resolution of such outbreaks easier and more productive for customers and researchers alike. Then there's the matter of marketing and mindshare. First and foremost, antivirus vendors are inbusiness to make money, and it behooves them to capitalize on as much free publicity as they can. Thus, with each new outbreak we see vendors stumbling all over themselves to be the "first to detect and defend" against the latest malicious code and probably explains why there's no longer a standard outbreak naming scheme after nearly two decades. From press releases to interviews on television, radio, and newspapers, antivirus industry executives race to establish their companies and products as the most vigilant and capable on the market, an activity often made more amusing when backed by questionable, if not fabricated, statistics and predicted damage assessments (usually in the billions of dollars) from each outbreak -- and almost always followed by a pitch espousing the cost-effective security that only their products provide. The link for this article located at net-security.org is no longer available. . The anti-virus sector, while crucial for user safety, often undermines its own security promises through fear tactics, jargon, and opaque pricing practices. Anti-virus Issues, Malicious Code, Consumer Trust, Security Practices. . Anthony Pell
Feb 20, 2004
•
Network Security
76
access controlsecurity conferencetechnology innovationRSA Conference 2023: Unveiling New Advances In Biometric Security
The RSA Conference, named for the Bedford, Mass.-based security company that puts it together, began Sunday and runs through Thursday. In another sign that security has become important business, the sponsors include Intel, Microsoft, Hewlett-Packard, IBM and Compaq. "I think the . . . . The RSA Conference, named for the Bedford, Mass.-based security company that puts it together, began Sunday and runs through Thursday. In another sign that security has become important business, the sponsors include Intel, Microsoft, Hewlett-Packard, IBM and Compaq. "I think the RSA thing has come of age, and people are taking the whole topic seriously," said Michael Ruehle, president and CEO of BioID America Inc., who plans to show off new technology from his company that scans a user's face, voice and lip movements for high-security identification. Such biometric devices, which grant or deny access to users based on ironclad personal characteristics, have been available for years. But even though ordinary passwords are easily stolen or forgotten, biometrics have yet to move into widespread use because of high cost and varying reliability. The link for this article located at Nando Times is no longer available. . Professionals convene at the Cybersecurity Summit to discuss innovations in encryption methods and their effects on security protocols.. RSA Conference, Biometric Systems, Security Innovations, Access Control. . Anthony Pell
Apr 09, 2001
•
Organizations/Events
83
security consultantsecurity industrydigital undergroundJohn Draper Returns as Security Consultant in Cybersecurity Arena
Legendary hacking figure Captain Crunch is returning from years of relative obscurity to set himself up as a security consultant. Perhaps the most well known figure in the digital underground besides Kevin Mitnick, John Draper made his name in 1971 when . . . . Legendary hacking figure Captain Crunch is returning from years of relative obscurity to set himself up as a security consultant. Perhaps the most well known figure in the digital underground besides Kevin Mitnick, John Draper made his name in 1971 when he discovered that the toy whistle in the Cap'n Crunch cereal box could trick the telephone network into giving him free calls. Draper's activities as a phreaker, who was able to illegally control the US telephone network, are documented in a seminal article in the October 1971 issue of Esquire, called "Secrets of the Little Blue Box", a reference to that generate the tones necessary for sending commands down the phone network. The link for this article located at TheRegister is no longer available. . The enigmatic hacker known as Captain Crunch is making a comeback after years of being off the radar, transitioning into the role of a cybersecurity advisor.. Captain Crunch, John Draper, Security Consulting, Hacking Legend, Phreaking. . LinuxSecurity.com Team
Feb 01, 2001
•
Hacks/Cracks
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More