Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 10 articles for you...
76
security reviewsecurity oversightkernel patchesLinux Foundation Addresses Kernel Concerns Over UMN Patches Review
The Linux Foundation Technical Advisory Board reports on what was found in its complete examination of University of Minnesota patches, putting out the fire between the Linux kernel community and the University of Minnesota (UMN). . The fire between the Linux kernel community and the University of Minnesota (UMN) is being put out. Thanks to an ill-thought-out Linux security project , two UMN graduate students tried to insert deliberately buggy patches into Linux . Greg Kroah-Hartman, the well-respected Linux kernel maintainer for the Linux stable branch, responded by banning not only them but any UMN-connected developers from contributing to the Linux kernel. Now, UMN has addressed the Linux kernel developer's community's concerns . And, in a message to the Linux Kernel Mailing List (LKML) , the Linux Foundation Technical Advisory Board (TAB) and volunteer senior Linux kernel maintainers and developers have reported on what they found when they closely and thoroughly examined patches from UMN academics. The link for this article located at ZDNet is no longer available. . The tension surrounding the collaboration between the Linux developer community and the University of Minnesota (UMN) is being resolved.. Linux Foundation, Kernel Community, Technical Review. . Brittany Day
May 06, 2021
•
Organizations/Events
210
security advisorycritical flawsecurity reviewHome Router Security Report: Critical Flaws Detected Across Vendors
A new report reveals that common home routers from Netgear, Linksys, D-Link and other vendors contain serious security vulnerabilities that even updates don’t fix. While Linux can be a very secure OS in theory, researchers have found that many of these vulnerable routers are powered by very old versions of Linux that lack support and are riddled with security issues as a result. . A security review of 127 popular home routers found most contained at least one critical security flaw, according to researchers. The “Home Router Security Report” (PDF) by Peter Weidenbach and Johannes vom Dorp—both from the German think tank Fraunhofer Institute–found that not only did all of the routers they examined have flaws, many “are affected by hundreds of known vulnerabilities,” the researchers said. On average, the routers analyzed–—by vendors such as D-Link, Netgear, ASUS, Linksys, TP-Link and Zyxel—were affected by 53 critical-rated vulnerabilities (CVE), with even the most “secure” device of the bunch having 21 CVEs, according to the report. Researchers did not list the specific vulnerabilities. The link for this article located at Threatpost is no longer available. . An analysis of 150 widely-used home routers uncovered significant vulnerabilities that persist even after manufacturer patches.. Home Router Security, Vulnerability Report, Netgear Issues, D-Link Security, Linksys Flaws. . Brittany Day
Jul 13, 2020
•
Security Vulnerabilities
76
cybersecuritysecurity reviewChromeOSChromeOS Insights From WhiteHat Ahead Of Black Hat Conference
Google's ChromeOS is a browser-based cloud powered operating system that holds the potential to be more secure than other traditional hard disk powered operating systems. According to research from security firm Whitehat, ChromeOS has its strengths, but it also has a few weaknesses too.. Matt Johansen, security researcher at WhiteHat Security detailed some high level areas of concern in ChromeOS during a preview event ahead of the Black Hat security conference in Las Vegas, which kicks off at the beginning of August. Johansen noted that Google provided Whitehat with a cr-48 Chromebook powered by ChromeOS to test security and see if there were any risks. "We were successful pretty quickly," Johansen said. The link for this article located at eSecurity Planet is no longer available. . At the forthcoming Black Hat Conference in Las Vegas, Matt Johansen from WhiteHat will examine potential vulnerabilities in ChromeOS, highlighting security challenges. ChromeOS Security, WhiteHat Research, Cloud Operating System, Cybersecurity Insights. . Anthony Pell
Jul 18, 2011
•
Organizations/Events
83
security advisorycyber attacknetwork breachLulz Security Hacks Senate Website: Review of Public Access Breach
The Senate's website was hacked over the weekend, leading to a review of all of its websites, in the latest embarrassing breach of security to hit a major U.S.-based institution.. The loosely organized hacker group Lulz Security broke into a public portion of the Senate website but did not reach behind a firewall into a more sensitive portion of the network, Martina Bradford, the deputy Senate sergeant at arms, said on Monday. Despite the breach, the Sergeant at Arms Office, which provides security for the Senate, said that the breach had not compromised any individual senator's information. Lulz announced the hack on Monday. "We were responding to their allegations. Basically what we're saying that the server they got into is for public access and is in the public side," said Bradford. The link for this article located at CNET is no longer available. . Anonymous cyber group breaches Congressional site, leading to a comprehensive security audit of all Congressional online platforms following the incident.. Senate Website Hack, Lulz Security, Cyber Attack, Info Security Review. . LinuxSecurity.com Team
Jun 14, 2011
•
Hacks/Cracks
83
security advisorydata breachsecurity measuresSuffolk County National Bank Reports Breach: 8,000 Customers Affected
Officials at Suffolk County National Bank in Long Island, N.Y. this week are warning more than 8,000 customers that their account login information was likely compromised in November, when a hacker illegally accessed a server hosting its online banking system.. SCNB officials discovered the breach during a routine internal security review in late December. Investigators determined the unauthorized intrusion occurred during a six-day period between Nov. 18 and Nov. 23 of last year. "The security of customers' information is of utmost importance to SCNB," Suffolk Bancorp CEO J. Gordon Huszagh said in a statement. "While we know that our diligence in this regard allowed us to uncover this incident, and to take action rapidly to protect our customers, we also recognize that the provision of financial services over the Internet requires our dedication to continuous monitoring and security." Unlike other banks and financial institutions victimized by online hackers, Suffolk Bancorp (NASDAQ: SUBK), the parent company of SCNB, is telling investors just how much it will cost to investigate the data breach and improve security controls and technology to prevent future intrusions. The link for this article located at eSecurity Planet is no longer available. . Huntington Bank reveals data compromise, notifying 10,500 clients and emphasizing the need for robust cybersecurity measures.. Suffolk County National Bank, Data Breach, Online Banking Security. . LinuxSecurity.com Team
Jan 15, 2010
•
Hacks/Cracks
78
linux distributionsecurity toolssecurity reviewBackTrack 2 Review: Over 300 Testing Tools in Live CD Distribution
BackTrack is a live CD Linux distribution that focuses on penetration testing. A merger of two older security-related distros -- Whax and Auditor Security Collection -- BackTrack bundles more than 300 security tools. . The link for this article located at Linux.com is no longer available. . Dive into BackTrack 2, a powerful live CD designed specifically for penetration testing, encompassing a vast array of more than 300 security utilities.. BackTrack, Penetration Testing, Linux Live CD. . LinuxSecurity.com Team
Apr 25, 2007
•
Vendors/Products
79
firefoxopen sourcesoftware flawFirefox Review: Open Source Community Response to Security Issues
Publicity surrounding the JavaScript flaw shows “the open source system is working,. The imperfections in Mozilla Foundation’s Firefox Web browser should not be seen as disturbing problems but as opportunities to show the system works, according toopen source Latest News about open source advocates. A controversy erupted over Firefox security Latest News about Security based on a report from the Danish security firm Secunia Latest News about Secunia, which said an error in Firefox could allow hackers to gain sensitive information. While some software experts question Mozilla’s ability to patch up vulnerabilities in a timely way, others say the whole point of having an open source community is to address problems without having to have developers reside under a single roof. So far, open source software, such as theLinux Latest News about Linux OS and Firefox application, have been marred with fewer hacking episodes, but security professionals point to the fact that open source products are not prominent targets of attack -- yet.. The flaws in the Chrome browser showcase the advantages of open source in tackling vulnerabilities.. Firefox Security, Open Source Response, JavaScript Flaw. . LinuxSecurity.com Team
Apr 06, 2005
•
Security Projects
83
malwarethreat assessmentsecurity reviewSpyware Threat Assessment: Anti-Spyware Tools Fail to Detect Attacks
With the threat of a sophisticated spyware attack looming, a renowned security researcher says the most popular detection and removal tools "fail miserably" at addressing the growing spyware/malware scourge. . . .. With the threat of a sophisticated spyware attack looming, a renowned security researcher says the most popular detection and removal tools "fail miserably" at addressing the growing spyware/malware scourge. Just days after hackers seized control of a banner ad server and used it to load malicious programs on vulnerable machines, researcher Eric Howes issued failing grades on all anti-spyware scanners he tested during a two-week stretch in October. Howes, a graduate student at the University of Illinois at Urbana-Champaign, found that the best-performing anti-spyware scanner failed to detect about 25 percent of the "critical" files and registry entries installed by the malicious programs. "One thing I found out for sure is that no single scanner removes everything," Howes said in an interview with eWEEK.com. "I had an inkling before doing the test that the results would come back like this. But it still is disappointing to find that the tools, in many cases, are basically useless." "The anti-spyware tools missed things that simply reinstalled what was deleted," Howes said, likening it to a cat-and-mouse game being won by the bad guys. The link for this article located at eweek.com is no longer available. . With the threat of a sophisticated spyware attack looming, a renowned security researcher says the m. threat, sophisticated, spyware, attack, looming, renowned, security, researcher. . LinuxSecurity.com Team
Nov 24, 2004
•
Hacks/Cracks
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Explore top 10 tips to secure your open-source projects now. Read More