You are here

LinuxSecurity.com

Subscribe to Feed LinuxSecurity.com LinuxSecurity.com
Përditësimi: 5 orë 17 min më parë

SSH Under Siege: Hardening Your Linux Server Against Proxy Abuse

Enj, 03/07/2025 - 2:35md
Let's be honest''your Linux server isn't the fortress you hope it is if your SSH setup isn't locked down tight. Recently, security teams have been tracking a spike in attacks, and it's not just the usual malware game we've seen before. Attackers are going low-key and crafty, exploiting weak SSH security to install legitimate tools like TinyProxy and Sing-box to turn compromised servers into proxy nodes. These tools are completely normal when used properly, but they're a dream for attackers who want to hide their tracks or sell access to your system.

Ivanti CSA Flaws Weaponized by Houken for Linux Rootkit Attacks

Enj, 03/07/2025 - 2:15md
Linux admins and infosec pros, we've got a real problem on our hands. There's a group out there''the Houken threat actor''that's not messing around. These guys have been targeting industries that form the backbone of society: government, telecoms, finance, you name it. Using unpatched Ivanti devices as their entry point, they're pulling off some slick and dangerous moves. This isn't some dime-a-dozen botnet attack or basic ransomware scheme''it's targeted, it's precise, and it's making life a nightmare for Linux admins tasked with safeguarding critical systems.

CISA Warns of CVSS 9.3 MICROSENS NMP Web+ Flaws

Mër, 02/07/2025 - 2:54md
If you're managing industrial networks, critical manufacturing systems, or infrastructure that demands tight security, you'll want to sit down for this one. MICROSENS NMP Web+, a popular network management platform, is in the spotlight after researchers discovered several critical vulnerabilities that essentially gift-wrap your systems for attackers. This isn't just a fix-it-whenever-you-can scenario. We're staring at vulnerabilities with CVSS v4 scores as high as 9.3''serious problems that require immediate attention.

Zero-Day Alert: Chrome's V8 Security Flaw Fixed in Emergency Patch

Mër, 02/07/2025 - 2:22md
If you're a Linux admin or happen to be neck-deep in infosec, here's something worth your immediate attention: a critical security hole in Google Chrome'' CVE-2025-6554 ''has been patched. Trust me, this one isn't just a ''check the box'' type of update; it's as real as it gets.

Ubuntu 25.10 Brings Rust-Based Tools to Security-Conscious Admins

Mar, 01/07/2025 - 2:29md
Anyone following the trajectory of Ubuntu over the past few years could have seen this coming: Canonical isn't just iterating; it's evolving. And with its 25.10 release ''aptly named Questing Quokka''Ubuntu takes a decisive step in reinforcing its reputation as the go-to Linux distribution for secure, reliable environments. If you're an admin with a sharp eye on system security or someone deeply vested in the intersection of programming trends and operational resilience, this is the release to sit up and pay attention to.

The Rise of Rust-Based Malware: Memory Safetys Double-Edged Sword

Mar, 01/07/2025 - 2:10md
When Rust emerged as the "memory-safe" poster child of programming languages, it didn't take long for its influence to spread. From systems programming to infrastructure tools, Rust is being embraced in areas long dominated by C and C++. It's cleaner, safer, and the way forward for Linux kernel modules, system utilities, and network drivers.

Canonicals Big Move: Multipass VM Manager Goes Fully Open-Source

Hën, 30/06/2025 - 2:56md
When you manage lightweight virtual machines (VMs) regularly, tools like Canonical's Multipass are a lifesaver. It's fast, reliable, integrates seamlessly with Ubuntu, and''until now''has had one major sticking point: not all of it has been open-source.

Attacks Targeting South Korean Web Servers: MeshAgent & SuperShell in Play

Hën, 30/06/2025 - 2:43md
Linux admins and infosec professionals, let's talk about a sophisticated attack campaign targeting South Korean web servers. Threat actors are leveraging file upload vulnerabilities to deploy web shells and advanced malware, such as MeshAgent and SuperShell, in a coordinated, multi-stage process.