Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 1 articles for you...
83
malwarecyber attacknginxNginRAT Attack on eCommerce: Remote Access Trojan via Nginx
eCommerce servers are being targeted with remote access malware that hides on Nginx servers in a way that makes it virtually invisible to security solutions. “NginRAT essentially hijacks a host Nginx application to stay undetected. To do that, NginRAT modifies core functionality of the Linux host system. When the legitimate Nginx web server uses such functionality (eg dlopen), NginRAT intercepts it to inject itself.” . The threat received the name NginRAT, a combination of the application it targets and the remote access capabilities it provides and is being used in server-side attacks to steal payment card data from online stores. NginRAT was found on eCommerce servers in North America and Europe that had been infected with CronRAT , a remote access trojan (RAT) that hides payloads in tasks scheduled to execute on an invalid day of the calendar. . NginRAT infiltrates online retail platforms by masquerading as a genuine nginx operation, presenting a significant cybersecurity challenge to digital marketplaces.. NginRAT, eCommerce Security, Malware Threats, Remote Access Trojans, Nginx Servers. . LinuxSecurity.com Team
Dec 03, 2021
•
Hacks/Cracks
83
malwareserverlinuxGolang Worm Drops Monero Miners on Linux and Windows Servers
Security researchers have discovered a new self-spreading Golang-based malware that has been actively dropping XMRig cryptocurrency miners on both Windows and Linux servers since early December. . This multi-platform malware also has worm capabilities that allow it to spread to other systems by brute-forcing public-facing services (i.e., MySQL, Tomcat, Jenkins and WebLogic) with weak passwords as revealed by Intezer security researcher Avigayil Mechtinger. The attackers behind this campaign have been actively updating the worm's capabilities through its command-and-control (C2) server since it was first spotted which hints at an actively maintained malware. . A cross-platform malware takes advantage of poor password security to deploy Monero mining software on both Linux and Windows systems.. Monero Miner,Golang Malware,Linux Security Threats,Cryptocurrency Worm,Server Protection. . LinuxSecurity.com Team
Dec 31, 2020
•
Hacks/Cracks
77
security breachreportserver threatUK Report on Increased Digital Attacks on Linux Websites
A UK based security firm claimed today that digital attacks on Web sites using the Linux operating system have reached an all-time high over the last three months. British firm mi2g claimed that Windows based servers were more resilient from March . . . . A UK based security firm claimed today that digital attacks on Web sites using the Linux operating system have reached an all-time high over the last three months. British firm mi2g claimed that Windows based servers were more resilient from March to May for corporate and government systems. It issued figures saying that the reason for the vulnerabilities was down to improperly configured systems, lack of a "trustworthy" computing initiative, and corporations choosing Linux because of its cost but not costing in technical support overheads. The link for this article located at The Inquirer is no longer available. . Cyber intrusions targeting Linux-endowed web platforms have escalated dramatically in the past few weeks, hitting unprecedented heights as reported by a cybersecurity company.. Linux Server Security, Digital Attack Trends, Security Breach Reports. . LinuxSecurity.com Team
Dec 01, 2003
•
Server Security
83
network securityincident reportcybersecurityMajor DDoS Attacks Impact Internet Root Servers and Infrastructure
Monday's attack on the 13 computer servers that manage the world's Internet traffic was the first of two assaults, according to officials at the companies that were affected. . .. Monday's attack on the 13 computer servers that manage the world's Internet traffic was the first of two assaults, according to officials at the companies that were affected . Just after 5 p.m. EDT on Monday, a "distributed denial of service" (DDOS) attack struck the 13 "root servers" that provide the primary roadmap for the Internet. The second attack started several hours later and targeted a different kind of Internet server. DDOS attacks are intended to overwhelm networks with data until they fail. The link for this article located at Washington Post is no longer available. . Monday's attack on the 13 computer servers that manage the world's Internet traffic was the first of. monday's, attack, computer, servers, manage, world's, internet, traffic, first. . LinuxSecurity.com Team
Oct 25, 2002
•
Hacks/Cracks
77
security advisorybuffer overflowcriticalQuake III Arena 1.29f/g High-Risk Buffer Overflow Security Flaw in Server
A security flaw involving the server software that allows Quake III players to play the popular shoot-them-up over a network has been reported. According to a posting on respected security mailing list BugTraq, a buffer overflow vulnerability in Quake III Arena . . . . A security flaw involving the server software that allows Quake III players to play the popular shoot-them-up over a network has been reported. According to a posting on respected security mailing list BugTraq, a buffer overflow vulnerability in Quake III Arena Server could allow a malicious users to crash a system hosting the game. The issue, which has been reported to id Software which developed the game, has the potential, as with all buffer overflow bugs, to allow an attacker to execute arbitrary code on a server, potentially enabling him to take control of a machine. Both Quake III Arena 1.29f and 1.29g are affected by the problem, and earlier versions of the software are believed to be safe. A beta version of Quake III 1.29h, which addresses a "server crash exploit" and improves game play had been released by id Software, which is recommending that users of Quake III Arena 1.29f and 1.29g should upgrade. [ All of article. ] The link for this article located at The Register is no longer available. . A security flaw involving the server software that allows Quake III players to play the popular shoo. security, involving, server, software, allows, quake, players, popular. . LinuxSecurity.com Team
Aug 02, 2001
•
Server Security
77
security advisoryremote code executioncritical flawLinux Advisory: Java Runtime Critical Flaw Remote Code Execution
Sun Microsystems has revealed a security hole in several versions of a critical component of Java that could allow an attacker to run harmful programs on a victim's computer. The vulnerability appears in versions of the Java Runtime Environment that Sun . . . . Sun Microsystems has revealed a security hole in several versions of a critical component of Java that could allow an attacker to run harmful programs on a victim's computer. The vulnerability appears in versions of the Java Runtime Environment that Sun has released for servers running Windows, Linux and Sun's Solaris operating systems. However, the company asserts that the flaw doesn't affect the Java components included in Microsoft's Internet Explorer and Netscape's Navigator browsers. The link for this article located at News is no longer available. . Oracle Corporation revealed a vulnerability in its Java software that could potentially leave systems susceptible to malicious software and cyber threats.. Java Runtime Security, Server Attack Prevention, Critical Software Flaws. . LinuxSecurity.com Team
Feb 23, 2001
•
Server Security
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More