Featured Linux Articles - Page 6

Need an in-depth introduction to a new security topic? Our features articles will bring up up-to-date on everything from buffer overflows to SE Linux policy development.

The Dual Edge of Open Source: Examining Key Benefits and Security Challenges

Open-source software (OSS) adoption has increased dramatically over recent years due to its flexibility and cost-cutting benefits, but whether or not OSS is completely safe is often controversial. Due to its open and collaborative nature, this t...
Dec 04, 2024
  0

Understanding Open Source: Benefits and Security Challenges of OSS

Open-source software (OSS) adoption has increased ...
Dec 04, 2024
  0
28.Lock Globe Esm H115

Enhance Your Business Agility and Security with Low-Code Platforms

What if your team could build an app in days, not month...
Dec 03, 2024
  0
8.Locks HexConnections CodeGlobe Esm H115

Discover LinuxSecurity Features

Remotely Exploitable Chromium DoS, Info Disclosure Vulns Fixed

Remotely Exploitable Chromium DoS, Info Disclosure Vulns Fixed

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Several high-impact, remotely exploitable cybersecurity vulnerabilities were recently discovered in the popular Chromium free and open-source web browser. These network security issues could lead to the execution of arbitrary code, Denial of Service (DoS) attacks resulting in potentially exploitable crashes, or the disclosure of sensitive information.

profile image Brittany Day
CISA Warns of Cybercriminals Exploiting Linux Kernel Security Vulnerabilities

CISA Warns of Cybercriminals Exploiting Linux Kernel Security Vulnerabilities

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

LinuxSecurity discovered and identified various network security issues that cybercriminals could utilize as exploits in cybersecurity that can severely harm the productivity of a business. Cloud security breach opportunities can significantly impact companies by causing memory exhaustion, system crashes, data loss, and arbitrary code execution. Even worse, Denial of Service (DoS), Cross-Site Scripting (XSS), and privilege escalation attacks can impact an organization’s runtime, reputation, and trustworthiness.

profile image Brittany Day

Contribute to LinuxSecurity

Don’t sit on the sidelines of history. Join the Linux Security community
and write real news & articles about Linux that matters the most.

Contribute Now
Best Browsers with a Built-in VPN

Best Browsers with a Built-in VPN

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Linux is widely regarded as a great OS for users looking to increase their safety online. That being said, using a Virtual Private Network (VPN) is an easy, convenient way to strengthen your online data and network security and protect your privacy and anonymity when using the Internet.

profile image Brittany Day
Verifying Linux Server Security: What Every Admin Needs to Know

Verifying Linux Server Security: What Every Admin Needs to Know

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Linux is a widespread OS known for its robust data and network security. That being said, cybersecurity vulnerabilities are inevitable in any OS. Therefore, Linux system administrators must be vigilant about monitoring and verifying the safety of their servers on an ongoing basis in order to protect sensitive data and prevent attacks on network security. After all, the majority of exploits in cybersecurity on Linux systems resulted from poor administration.

profile image Brittany Day
How To Get Live Updates on Critical Linux Security Advisories

How To Get Live Updates on Critical Linux Security Advisories

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Today, we have awesome news for the security-conscious Linux sysadmin: securing your systems by staying up-to-date on the latest advisories issued by your distro(s) just got easier and far more convenient with the creation of the @LS_advisories Twitter handle! LinuxSecurity Live Advisory Updates is a page that provides live updates on critical Linux security advisories issued by 15 popular Linux distros. The page is sponsored by LinuxSecurity.com (@lnxsec on Twitter) as a way to help admins monitor the latest advisory updates on Twitter.

profile image Brittany Day
Complete Guide to Vulnerability Basics

Complete Guide to Vulnerability Basics

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

The popularity of web applications is constantly growing as businesses and corporations host several services through them. However, as companies utilize web applications, they still face the threat of cybersecurity vulnerabilities.

profile image Brian Gomez
What You Need to Know to Improve Your Enterprise Vulnerability Management Strategy

What You Need to Know to Improve Your Enterprise Vulnerability Management Strategy

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Enterprise vulnerability management is vital to having a robust, proactive endpoint security strategy that enables organizations to identify and address data and network security issues before they lead to an attack or cloud security breach. This cyclical process involves identifying IT assets and correlating them with a continually updated vulnerability database to identify network security threats, misconfigurations, and bugs. Such management prioritizes the urgency and impact of each issue so your company can respond to critical cybersecurity vulnerabilities swiftly prior to exploitation.

profile image Brittany Day
High-Impact DoS, Arbitrary Code Execution, Spoofing Bugs Fixed in Thunderbird 102.9.0

High-Impact DoS, Arbitrary Code Execution, Spoofing Bugs Fixed in Thunderbird 102.9.0

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Multiple high-impact network security issues have been discovered in Thunderbird, which could result in Denial of Service (DoS) attacks in network security that lead to server crashes, access restrictions, arbitrary code execution, and spoofing breaches. These findings include a vulnerability that involves incorrect code generation during JIT compilation (CVE-2023-25751) and high-severity memory safety bugs, both of which were present in Thunderbird 102.8 (CVE-2023-28176).

profile image Brittany Day
Guide to the Linux IceFire Ransomware Variant

Guide to the Linux IceFire Ransomware Variant

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

IceFire Ransomware, which already utilizes exploits in cybersecurity to attack Linux systems, has recently developed a new strain. This threat takes advantage of an IBM Aspera Faspex file-sharing vulnerability (CVE-2022-47986) that had previously only targeted Windows systems and media and entertainment companies. Since Linux systems tend to be quite powerful in mitigating risks, IceFire Ransomware is all the more concerning, as it can breach robust cybersecurity systems and cause substantial harm.

profile image Brittany Day
ZeroLock: How to Defend Against Ransomware on Linux

ZeroLock: How to Defend Against Ransomware on Linux

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Written by Linux security expert and LinuxSecurity.com Founder Dave Wreski. Attacks in network security targeting Linux have surged in recent years due to the mass migration of workloads to the cloud and the increase in IoT and other connected devices on such networks. Traditional endpoint security solutions for Linux typically rely on the same algorithms and techniques developed to secure Windows desktops and don’t address the attack patterns unique to Linux. Therefore, such mitigation efforts are no longer sufficient to secure modern Linux workloads against today’s dynamic and evasive network security threats.

profile image Brittany Day
Private Internet Access: The Best VPN for Linux

Private Internet Access: The Best VPN for Linux

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

As network security threats to digital privacy, safety, and anonymity become a growing concern, organizations and individuals alike are increasingly turning to Virtual Private Networks (VPNs) to bolster security without sacrificing convenience. One of the most economical cybersecurity technologies available today, VPNs are simple to set up and use, and nearly all businesses have a corporate VPN as part of their IT infrastructure.

profile image Brittany Day
Defend Against XSS Attacks with Open-Source Vulnerability Scanners

Defend Against XSS Attacks with Open-Source Vulnerability Scanners

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Linux Cross-Site Scripting (XSS) attacks take place when a threat actor injects malicious, executable scripts into the code of a trusted application or website. XSS is a prevalent and serious data and network security threat for developers and their projects. It is estimated that more than 60% of web applications are susceptible to XSS attacks, which eventually account for more than 30% of all web application exploits in cybersecurity.

profile image Brittany Day
Critical Linux Kernel DoS, Arbitrary Code Execution Bugs Fixed: What You Need to Know

Critical Linux Kernel DoS, Arbitrary Code Execution Bugs Fixed: What You Need to Know

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Several critical and high-severity network security issues, including multiple use-after-free and stack-based buffer overflow cybersecurity vulnerabilities, were discovered in the Linux kernel. These network security threats could lead to Denial of Service (DoS) attacks, privilege escalation, or the execution of arbitrary code. This article will discuss the Linux kernel issue’s discovery, impact, and protection opportunities.

profile image Brittany Day
Critical ClamAV RCE, Remote Info Disclosure Bugs Patched: What You Need to Know

Critical ClamAV RCE, Remote Info Disclosure Bugs Patched: What You Need to Know

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Recently, researchers found two critical flaws in the ClamAV open-source antivirus engine. These network security issues lead to Remote Code Execution (RCE) and remote information leakage for susceptible devices. ClamAV has now released patch versions addressing these dangerous cybersecurity vulnerabilities. This article will discuss the flaw’s discovery, its impact, and how to protect against this network security threat.

profile image Brittany Day

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved