Alerts This Week
Warning Icon 1 697
Alerts This Week
Warning Icon 1 697

Stay Ahead With Linux Security News

14.Lock Code WorldMap Esm H350
Network SecurityPrice Tag 1system security Linux network

The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
1 min read Network Security
2.Motherboard Esm H350
Server SecurityPrice Tag 1open-source Linux administration

Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
3 - 6 min read Server Security
20.Lock AbstractDigital Circular Esm H350
Vendors/ProductsPrice Tag 1security breach linux

A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
5 - 10 min read Vendors/Products
30.Lock Globe Motherboard Esm H350
Security Trends Price Tag 1access control multi-tenant

Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
4 - 8 min read Security Trends
5.ShakingHands Esm H350
Vendors/ProductsPrice Tag 1incident response cloud security

Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
4 - 7 min read Vendors/Products
Filter Icon Refine news
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":547,"type":"x","order":1,"pct":78.48,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.88,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.34,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security news

We found -1 articles for you...
83
General Esm H240
Price Tag 1security incidentcyber threattelephony

$30K Telephony Incident In Development Office: Security Breach Report

It's been a while since we've had a security breach worth mentioning (that we know of). Last week we had one, and it was an eye-opener. . A small development office in Western Europe was informed by the local telephone company that a high number of calls were being made from the office's IP telephony setup to a Middle Eastern country. When we looked into it, we found that in just 15 days, over $30,000 in calls had been made to several Middle Eastern countries, as well as Russia, China and a couple of Central American nations.. A modest tech company in Northern Europe encountered a significant compromise—more than €25,000 in overseas communications generated within a mere two weeks.. IP Telephony,Cybersecurity Threat,Costly Breaches,International Calls. . LinuxSecurity.com Team

Calendar 2 Feb 13, 2012 User Avatar LinuxSecurity.com Team Hacks/Cracks
78
General Esm H240
Price Tag 1security advisoryAsteriskdenial-of-service

Asterisk: DDoS Risk in VoIP Services and IP PBX Security Issues

A flaw in the Asterisk IP PBX platform reported last week could result in a denial-of-service attack that would disrupt a business' VoIP or VoIP-to-PSTN gateway service. . Asterisk is an open-source IP telephony and messaging platform that runs on Linux, BSD and MacOSX servers, and can be used as a complete office phone system, or to add IP-enabled services The link for this article located at Network World is no longer available. . An issue within Asterisk IP PBX may result in service interruptions, affecting VoIP functionality on various systems.. Asterisk VoIP,DDoS Attack,Open Source Telephony,VoIP Security. . LinuxSecurity.com Team

Calendar 2 Jul 18, 2006 User Avatar LinuxSecurity.com Team Vendors/Products
Banner 4 1028x280 1708121825 1771600306
83
General Esm H240
Price Tag 1securityvoiptelephony

Understanding Automated Caller ID and ANI Spoofing in VoIP Security

What is ANI / Caller ID spoofing? ANI / Caller ID spoofing is setting the ANI / Caller ID on the outgoing call you are making to a 10 digit number of your own choosing. Traditionally it has been a complicated process either requiring the assistance of a cooperative phone company operator or an expensive company PBX system. . . .. What is Caller ID? Caller ID is a service provided by most telephone companies (for a monthly cost) which will tell you the number / name of an incoming call. [Definition: Hack FAQ ] What is ANI? Automatic Number Identification is a system used by the telephone company to determine the number of the calling party. There are believed to be two types, "FLEX ANI" (used for e.g. verification services such as voicemail) which is relatively easy to spoof, and "Real Time ANI" (used only for billing purposes on e.g. 800 numbers) which is harder to spoof. [Definition: Hack FAQ ] What is ANI / Caller ID spoofing? ANI / Caller ID spoofing is setting the ANI / Caller ID on the outgoing call you are making to a 10 digit number of your own choosing. Traditionally it has been a complicated process either requiring the assistance of a cooperative phone company operator or an expensive company PBX system. What is Automated ANI / Caller ID spoofing? Automated ANI / Caller ID spoofing is setting the number you are calling from without the use of an operator / company PBX system. By far the easiest method thanks to the increasing take-up of internet telephony services are VoIP (Voice over Internet Protocol) service providers who allow you when using their service to set whatever caller ID you like (which is also used as ANI). The link for this article located at rootsecure.net is no longer available. . Explore the complexities of Automatic Number Identification (ANI) and Caller ID spoofing, revealing key secure calling practices used in Voice over Internet Protocol (VoIP) systems. Telephony Spoofing, ANI Spoofing, VoIP Security. . LinuxSecurity.com Team

Calendar 2 Jul 09, 2004 User Avatar LinuxSecurity.com Team Hacks/Cracks
74
General Esm H240
Price Tag 1denial of serviceVoIPnetworking

Understanding Phreaking and SIP Threats in VoIP Security

Increasing use of voice-over-IP technology could result in a return to "phreaking" - hacking of telephony systems to make free calls. Security expert Matt Barrie said VoIP was cheap and increasingly popular, but it introduced many vulnerabilities of traditional Internet . . . . Increasing use of voice-over-IP technology could result in a return to "phreaking" - hacking of telephony systems to make free calls. Security expert Matt Barrie said VoIP was cheap and increasingly popular, but it introduced many vulnerabilities of traditional Internet Protocol networking to voice telephony. Mr Barrie, a lecturer in security at the University of Sydney and former manager of the Packetstorm security portal, said telephone network operators had spent years coming to terms with security issues in voice transmission, which could re-emerge as VoIP grew. Internet security centre CERT found a vulnerability in the fledgling IP Session Initiation Protocol (SIP) in February. Among other things, the vulnerability could be used to cause denial of service attacks. The link for this article located at news.com.au is no longer available. . Explore the implications of VoIP technology's rapid advancement on the phreaking phenomenon and its potential security risks.. Voice over IP, Telephony Security, Phreaking Risks, SIP Vulnerability, Internet Protocol Issues. . Anthony Pell

Calendar 2 May 07, 2003 User Avatar Anthony Pell Network Security
Banner 4 1028x280 1708121825 1771600306
News Add Esm H340

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":547,"type":"x","order":1,"pct":78.48,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.88,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.34,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here