Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found -3 articles for you...
83
web securitymalware preventionsite integrityWordPress Security: Protecting Against Backdoors and Attacks
Wordfence security researchers recently shed light on an infamous supply chain attack that may have affected as many as 36,000 WordPress websites. Five widely used plugins were infected with malware , which opened a backdoor that allowed attackers to manipulate SEO elements and gain administrative access. This shocking discovery is a necessary warning to developers, administrators, and website owners about the dangers lurking within software supply chains. . Let's examine this discovery and the broader trend it highlights. We'll then provide practical mitigation strategies for securing WordPress against this backdoor and similar threats. Understanding This Recent WordPress Backdoor & Its Impact This attack, announced by WordFence on Monday, June 24, 2024, subtly added backdoors to plugins at WordPress.org. Social Warfare, BLAZE Retail, Wrapper Link Elementor, and Contact Form 7 Multi Step Addon are among the plugins affected. This malicious act is not a benign event. It indicates the introduction of unauthorized administrative accounts, SEO spamming, and power plays by unknown actors. This attack is a wake-up call for developers and admins who have worked hard to build and maintain plugins and could see their reputations tarnished in an attack. Victims face the risk of data breaches or SEO penalties and will be left scrambling to restore the integrity of their websites. This threat reinforces that no one in the WordPress community is immune from such sophisticated supply-chain attacks. The Broader Trend: Rising Supply-Chain Attacks Supply-chain attacks are among today's most dangerous cyber threats because of their insidious nature. These attacks are not direct but instead target trusted software repositories. They can have a more significant impact on users who install or update the software. The WordPress ecosystem narrowly avoided disaster this year when a backdoor in the XZ Utils library code was discovered moments before its widespread release. Anotherrecent supply-chain attack was reported by security companies Checkmarx and Datadog. To infect devices, the malicious actors behind this campaign distributed Trojanized versions of open-source software through NPM and GitHub. The package @0xengine/xmlrpc masqueraded as an official JavaScript implementation, but it contained a backdoor that activated malicious codes, allowing attackers to steal credentials and sensitive information, including SSH keys and AWS access keys. This malware campaign resulted in 390,000 WordPress credentials being stolen. It has continued to persist due to its subtlety. Multiple factors can be blamed for this escalation of supply-chain attacks. Interconnectivity between software components and open-source libraries makes it possible to exploit many touchpoints. The sheer volume of code also makes it impossible to monitor every line, especially since stealthy malware can lay dormant for long periods and escape detection. Infiltration opportunities increase as software development tools and techniques become more complex. How Can I Fortify WordPress Against These Threats? Protecting a WordPress install requires a multifaceted approach that includes preventive measures and rapid response protocols. Here are a few actionable steps for improving WordPress security : Install Cautiously: Before installing any plugin or theme, it is essential to conduct a thorough review. Check out the developer's track record, update history, and feedback from other users. Regular Audits: Conduct regular security audits on your WordPress site. Scan for unauthorized file changes, rogue accounts, and suspicious log activity. Reduce the number of plugins to those you need: The more plugins you have, the greater your attack surface. Update protocols: Stay current with the latest updates, but be cautious. Verify updates from multiple sources and test new versions in staging environments. Keep regular site backups: Maintaining regular site backupswill allow you to restore your website to a secure state in case of a breach. Implement Security Plugins and a Firewall: Use security plugins such as firewalls and vulnerability scanners. WPScan is a valuable tool for Linux admins who want to protect WordPress sites against malware and other persistent threats. WPScan scans for malware and other risks to WordPress sites, allowing admins to find issues like outdated plugins, weak passwords, and vulnerable themes that need to be fixed. The installation is simple and quick, and the vulnerability database is updated regularly to keep administrators safe from new threats. User Permission Control: To minimize internal exploits, limit administrative privileges to trusted individuals, and implement role-based access controls. Developer Vigilance: Developers should monitor their environments for irregularities and use robust authentication mechanisms, like two-factor authentication, to prevent their accounts from being the weakest link. Our Final Thoughts on Securing WordPress Sites Against Backdoors & Hacks WordPress site owners are more responsible than ever for their online presence. The recent supply chain backdoor intrusion into WordPress plugins was not an isolated incident but part of a worrying trend in cyber threats. The discovery of this backdoor has highlighted the need to tighten security measures in general. WordPress users can better protect their sites from high-caliber hacks by educating the community and implementing robust cybersecurity measures. This will help ensure their sites remain secure and accessible amidst heightened cyber risk. . Given recent revelations about WordPress backdoor breaches, it's crucial to explore their impacts and find effective ways to bolster your website’s security against such threats. WordPress Security,Supply Chain Attack,Plugin Security,Malware Protection. . Brittany Day
Dec 17, 2024
•
Hacks/Cracks
83
security advisoryweb attacksite defacementNY Times: Business Site Defacement By Sm0ked Crew - Attrition Responds
In the recent defacement of the NY Times business site, the defacer from "Sm0ked Crew" included an apology to Attrition that has resulted in a flood of mail to Attrition staff asking for clarification. Attrition staff frequently endures abuse from script-kiddy groups who are under the misguided belief that we work for them. We have been harassed and chastised if we are slow in posting a defacement or if we happen to miss one.. . .. In the recent defacement of the NY Times business site, the defacer from "Sm0ked Crew" included an apology to Attrition that has resulted in a flood of mail to Attrition staff asking for clarification. Attrition staff frequently endures abuse from script-kiddy groups who are under the misguided belief that we work for them. We have been harassed and chastised if we are slow in posting a defacement or if we happen to miss one. Attrition staff frequently endures abuse from script-kiddy groups who are under the misguided belief that we work for them. We have been harassed and chastised if we are slow in posting a defacement or if we happen to miss one. We have to remind these kids that our work for Attrition is done in our spare time and without compensation. Our "Going Postal" section has numerous examples of this, and our typical responses. Going Postal When some members of Sm0ked Crew took a simliar attitude, we made it painfully clear that we are a non-profit Web site, managed and maintained in the spare time of the participating staff. The Sm0ked Crew members were very apologetic and expressed appreciation for the voluntary work done by Attrition staff. Unfortunatly, they were not content with expressing their sentiments privately and chose to make a public statement on their next defacement - which happened to be the NY Times business section. We had no knowledge that they planned to deface the site or make such a statement. We certainly would have discouraged them from both actions. Attrition has a legal obligation to inform law enforcement if we have prior knowledgeof a crime and to comply with federal subpoenas. We first knew about the defacement when we received several emails to "
Feb 21, 2001
•
Hacks/Cracks
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More