Please turn JavaScript on
Find more feeds
LinuxSecurity - Security Articles icon

LinuxSecurity - Security Articles

Subscribe to LinuxSecurity - Security Articles’s news feed.

Click on “Follow” and decide if you want to get news from LinuxSecurity - Security Articles via RSS, as email newsletter, via mobile or on your personal news page.

Subscription to LinuxSecurity - Security Articles comes without risk as you can unsubscribe instantly at any time.

You can also filter the feed to your needs via topics and keywords so that you only receive the news from LinuxSecurity - Security Articles which you are really interested in. Click on the blue “Filter” button below to get started.

Website title: Top Linux News, Advisories, How-tos, and Feature Releases

Is this your feed? Claim it!

Publisher:  Unclaimed!
Message frequency:  1.22 / day

Message History

How Open Source SIEM Architectures Scale Beyond Single-Server Deployments
Building a SIEM is easier than scaling one. Most open-source deployments start as a simple "all-in-one" server. It is easy to set up, but that design rarely survives the transition from a lab to a production workload.

Read full story
HTTP/2 Bomb: Why Linux Infrastructure is Vulnerable to a New Low-Bandwidth DoS Attack
A newly disclosed attack technique called HTTP/2 Bomb is drawing attention because it targets the software that sits at the front of much of the Linux internet. Apache HTTP Server, NGINX, Envoy, and the ingress layers that many Kubernetes environments depend on can be forced into consuming disproportionate amounts of memory using relatively small amounts of attacker traffic.

Read full story
How to Detect Unauthorized SSH Keys on Linux Systems
Most of the time, nobody notices. SSH authentication succeeds, no alerts are generated, and the connection looks exactly the way it did the day the key was installed. That's part of the problem.

Read full story
Compromised VS Code Extension Puts Linux Development Pipelines at Risk
The compromise of Nx Console shows how much infrastructure now sits behind a single developer account. GitHub repositories, CI/CD pipelines, container build systems, Terraform projects, Kubernetes deployments. None of those systems was the initial target. The workstation was.

Read full story
Linux Persistence Hunting: The 5 Techniques Security Teams Miss Most
You remove the malware. You rotate the compromised credentials. You patch the original vulnerability and close the ticket. Two weeks later, the attacker is back.

Read full story