Network Security
system security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Vendors/Productsincident response cloud security
incident response cloud security Managed Extended Detection and Response (MXDR) has become one of the most sought-after security services in the enterprise market — and with good reason. It promises the holy grail: broad visibility across endpoints, network, cloud, email, and identity, combined with the 24/7 human expertise most organizations simply cannot build in-house. . However, the rapid growth of the market has produced a wide range of providers whose capabilities vary considerably beneath the surface. Choosing the...
May 19, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found -2 articles for you...
83
information theftcyber attackcritical infrastructureRussian Hackers Target US Utilities Using Vendor Networks
By penetrating the networks of downline vendors, Russian hackers gained access to a reportedly secure, isolated network, allowing them to eventually reach the control rooms of US utilities, according to the Wall Street Journal.. The state-sponsored hacking group, which poses a serious threat to critical infrastructure, has been on the watch list of the Department of Homeland Security (DHS) since 2014. Using stolen credentials gained through spear-phishing emails and watering-hole attacks, the hackers's activity long went undetected, which allowed them to steal confidential information and “familiarize themselves with how the facilities were supposed to work,” WSJ reported. The link for this article located at InfoSecurity is no longer available. . Cybercriminals from Russia breach American power grid via third-party suppliers, endangering essential infrastructure functionality.. Russian Hacking, Critical Infrastructure, Spear-Phishing, Cybersecurity Threats. . LinuxSecurity.com Team
Jul 29, 2018
•
Hacks/Cracks
78
data breachcyber attackrisk assessmentAssess the Dependability of Vendors Post SecurID Security Breach
During the holiday weekend, defense contractor Lockheed Martin confirmed what had been swirling in speculation for a number of days -- that it was hit by a significant cyber-attack.. Days later, news reports broke claiming that defense firm L-3 Communications had also been targeted in considerable cyberattacks. In both attacks, confidential information about the workings of RSA Security's SecurID products have reportedly been central to the attacks, which fell on the heels of many other recent and high-profile attacks, such as those that hit Sony's PlayStation Network, HBGary and NASDAQ's Directors Desk web software used by Fortune 500 companies. The link for this article located at CSO Online is no longer available. . A considerable data breach underscores the importance of caution regarding trust in security measures, evident in various infiltrations.. Cyber Attacks, Vendor Security, Trust Issues, Breach Lessons, Risk Management. . LinuxSecurity.com Team
Jun 02, 2011
•
Vendors/Products
74
security advisorypatch managementtrojan threatOperating System Patch Insecurities Lead to Trojan Risks
The way operating system vendors issue security patches is insecure, in many cases, and could let crackers exploit this to trick users into loading trojan horses onto their systems. Security firm BindView, whose Razor team of security researchers . . . . The way operating system vendors issue security patches is insecure, in many cases, and could let crackers exploit this to trick users into loading trojan horses onto their systems. Security firm BindView, whose Razor team of security researchers completed the research, questioned 27 different vendors of commonly used products on whether patches are accompanied by digital signatures or other forms of cryptographic authentication. Its findings, available in full here, are a real eye-opener because they highlight glaring security gaps, not least that a minority of vendors, including Apple and Compaq, provide no authentication for their patches. "A number of the vendors (including some Fortune 500 companies) do not offer patch authentication via any cryptographic method. This can make it very difficult for customers to verify that they have obtained a correct patch rather than a trojan horse," said Matt Power, of BindView's Razor security team. The link for this article located at The Register is no longer available. The link for this article located at The Register is no longer available. . The way operating system vendors issue security patches is insecure, in many cases, and could let cr. operating, system, vendors, security, patches, insecure, cases. . Anthony Pell
Dec 21, 2000
•
Network Security
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More