Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found -1 articles for you...
81
privacy issuesecurity vulnerabilityuser data theftPrivacy Compromised: Smart Speaker Apps Eavesdrop and Phish Users
Privacy is a hot topic in the realm of smart speakers, fromemployees listening in on recordingsand auditorsaccessing user locations. Now, another issue regarding speakers has been raised, after security researchers revealed that apps accepted by the Amazon Alexa and Google Home platforms could be used to phish users and to eavesdrop on them. Learn more in an interesting Engadget article: . Researchers from the firm Security Research Labs created the apps, known as Skills for Alexa and Actions for Google Home, which exploited security vulnerabilities to hack devices, as reported by Ars Technica . SRL created several apps for each platform which appeared to be legitimate skills like a horoscope app, but which actually hid malicious code. The apps were able to collect personal data including passwords, and also to eavesdrop on users even after they thought that the speaker was no longer listening. This worked by the app giving a fake error message which sounded as if it had closed, while it actually it continued operating and taking down a transcript of everything the user said after that point. The link for this article located at Engadget is no longer available. . Studies indicate that Smart Assistant applications are capable of enabling unauthorized listening and fraudulent schemes, thereby jeopardizing user confidentiality.. Smart Speakers, Security Vulnerability, Eavesdropping App, User Data Theft. . LinuxSecurity.com Team
Oct 21, 2019
•
Privacy
82
phishingransomwarecybersecurity attackGarfield County Ransomware Attack: Revealing Major Cybersecurity Flaws
Garfield County, Utah, was recently affected by ransomware. Local government is an increasingly attractive target for criminals because of its high dependence on information technology, and generally poor security. Elected officials are under constant pressure to spend available funds on something visible and appealing to the electorate rather than unseen technology. . Little is known about the Garfield attack. In brief, it appears that an employee clicked a phishing link that gave the criminals access. Having gained access, the ransomware apparently encrypted enough systems to require County officials to switch to paper administration; although it is reported that the courts, elections and sheriff's office were not affected. The link for this article located at SecurityWeek is no longer available. . A recent incident in Larimer County exposed serious flaws in the cybersecurity measures of local government systems following a ransomware breach.. Ransomware Attack, Cybersecurity Threats, Phishing Risks, Local Government Security. . Brittany Day
Apr 17, 2019
•
Government
82
security vulnerabilitysoftware riskmilitary softwareGAO Report Reveals Risks in Defense Software from Foreign Suppliers
Its hard to help wondering if this might give Green Hills Software just the boost they've been looking for. To quote from the article, "The Defense Department's control of the source of weapons software came under fire today in a report issued by the General Accounting Office, which said overseas production of software creates an unacceptable security environment." . . .. The Defense Department's control of the source of weapons software came under fire today in a report issued by the General Accounting Office, which said overseas production of software creates an unacceptable security environment. "DOD acquisition and software security policies do not fully address the risk of using foreign suppliers to develop weapon system software," auditors wrote in the report. "The current acquisition guidance allows program officials discretion in managing foreign involvement in software development, without requiring them to identify and mitigate such risks. Moreover, other policies intended to mitigate information system vulnerabilities focus mostly on operational software security threats, such as external hacking and unauthorized access to information systems, but not on insider threats, such as the insertion of malicious code by software developers." The report said military officials recently adopted initiatives that could curb the threat, but they have not yet implemented the initiatives throughout the department. Auditors cited weapons development as a particular concern, given the potential ramifications should an enemy infect software with a malicious code or a Trojan horse, the report said. The link for this article located at fcw.com is no longer available. . The Defense Department's control of the source of weapons software came under fire today in a report. wondering, might, green, hills, software, boost, they've, looki. . Anthony Pell
May 27, 2004
•
Government
82
hacker threatgovernment transparencysecurity vulnerabilityCongress Examines Computer Security Risks Amid Rising Hacker Threats
As Congress Inquires About the Safety of the Government's Computers, one question comes up: Are computer hackers getting the upper hand on the U.S. government? That's what a House subcommittee is investigating at hearings today, as it scrutinizes the government's current . . . . As Congress Inquires About the Safety of the Government's Computers, one question comes up: Are computer hackers getting the upper hand on the U.S. government? That's what a House subcommittee is investigating at hearings today, as it scrutinizes the government's current level of security in the wake of a series of recent computer attacks."It's certainly a concern," says Jeff Carpenter of the Computer Emergency Response Team at Carnegie-Mellon University in Pittsburgh, who is testifying at the hearings. "As the government and other sectors increase their information on the Internet, they increase their exposure, too." The link for this article located at ABCNews.Com is no longer available. . Recently, Congress has raised serious concerns about the security of government computer systems amid a surge in cyber attacks, highlighting vulnerabilities exploited by hackers. Government Security, Cyber Threats, Congressional Hearings, Computer Protections. . Anthony Pell
Aug 29, 2001
•
Government
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More