A new class of problems lets a malicious app pre-configure an invisible privilege update.more »
Ultra-sophisticated attack tool might have originated from a state-sponsored intelligence service.more »
Symantec says Linux-Darlloz burrows in through PHP.more »
Innovative back door looks like normal SSH traffic.more »
Kernel Rootkit Tricks The Spy WithinMar 11, 2013
Rootkits allow attackers to take complete control of a computer. We describe the tricks intruders use to gain access to the Linux kernel and provide guidelines on hardening the kernel against such attacks.more »
Customizing PortSentry Do you have a sentry to keep an eye on your servers?Apr 24, 2012
PortSentry monitors your ports and lets you know when they’ve been scanned.more »
Full release of BackTrack Linux 5 R2 is now available.more »
Security Lessons: Modified Code Attacks Detecting source code modification attacksSep 02, 2011
Learn how to protect yourself against malicious attacks by modified source code.more »
Kernel king admits his tone has alienated volunteers, but says the demands of the process require directness.
New flaw in an old encryption scheme leaves the experts scrambling to disable SSL 3
Lennart Poettering wants to change the way Linux developers talk to each other.
Enterprise giant frees itself from ink and home PCs (and visa versa).
Mozilla’s product think tank sinks silently into history.
TODO group will focus on open source tools in large-scale environments.
New tool will look like GParted but support a wider range of storage technologies.
New public key pinning feature will help prevent man-in-the-middle attacks.
Carnegie Mellon researchers say 3 million pages could fall down the phishing hole in the next year.
The US government rolls new best-practice rules for protecting SSH.