Happy Monday fellow Linux geeks and Open Source enthusiasts! In this week's newsletter, we cover a new large-scale phishing campaign that has flooded open-source repositories with 144,000 malicious packages. Learn about this attack, so you are better equipped to defend against it and future threats!

In addition, we explain how the Lynis Linux security audit tool can help admins audit their systems and generate reports, as well as other Lynis options available, including running custom tests and category tests.

Finally, we discuss what you should prioritize in an open-source deception tool and introduce some excellent open-source honeypots you can use to detect threats for free.

Hope you enjoy!

Yours in Open Source,

Brittany Signature 150

Lynis: A Linux Security Audit Tool You Should Know About

10.FingerPrint LocksIn this article, Zaid explains how Lynis can be installed and run to audit Linux systems and generate reports, as well as other Lynis options available, including running custom tests and category tests.

Learn more about lynis linux security audit tool

 

Large-Scale Phishing Campaign Floods Open-Source Repositories with 144,000 Packages

15.@Sign KeyboardResearchers have identified that a massive 144,294 phishing-related packages have been uploaded by unknown threat actors on widely used open-source package repositories including NPM, PyPi, and NuGet. Learn about this large-scale attack so you are better equipped to defend against it, as well as future threats.

Learn more about phishing campaign open source repositories

 

Open-Source Honeypots that Detect Threats for Free

20.Lock AbstractDigital CircularIn this article on deception technology for Linux, we discuss what you should prioritize in an open-source deception tool and introduce some excellent open-source honeypots you can use to detect threats for free.

Learn more about deception technology for linux