LinuxSecurity.com

Microsoft has announced the availability of its Microsoft Edge Dev Channel for Linux. While Linux users can begin testing out Microsoft Edge on their systems, security researchers can begin searching for and submitting vulnerabilities to the company's new Microsoft Edge Bounty Program .

A new open-source tool called Gitjacker can help developers discover when they've accidentally uploaded /.git folders online and have left sensitive information exposed to attackers. Gitjacker is available as a free download on Github.

Three malicious npm JavaScript packages have been found opening shells on Linux and Windows systems. According to npm staff: "Any computer that has this package installed or running should be considered fully compromised."

RavenDB is at the forefront of data management innovation - leveraging open-source development and an intense focus on usability to offer efficient, versatile and highly secure database services to business application developers worldwide. The latest release of the open-source NoSQL document database, RavenDB 5.0, accommodates both local and hosted environments, and adds time series support and document compression to its robust feature set.

Google has added support for Wireguard - a VPN that uses state-of-the-art cryptography to provide users with the highest level of privacy, security and speed - to Android 12's Linux Kernel 5.4 tree.

The latest Linux kernel release is certainly not a game-changer, but does offer some notable performance improvements that will make certain groups of users much happier.

Google and Intel are warning of a high-severity Bluetooth security bug in all but the most recent version of the Linux Kernel - but 'high-severity' doesn't necessarily mean high risk.

Information leakage is a serious threat to the security of a Linux server, and can result in a host of severe consequences including significant downtime and the compromise of sensitive data. Luckily, server administrators can mitigate the risk of information leakage through a series of configuration changes.

Unix and Linux are two operating systems that have many significant overlapping features and, yet, continue to be unique in their own ways. Both Unix- and Linux-based OSes offer a high level of security due to their lack of root access and quick updates.

The TeamTNT threat group has updated Black-T - its crypto-mining worm - with Linux password-stealing capabilities and with an additional network scanner to help facilitate its spread to other vulnerable devices.

Tails 4.11 - the latest version of the "Anonymous OS" - is now available for download, offering a selection of improvements, updated components and security fixes.

When it comes to using a NoSQL document database to store, manage and retrieve documents, reliability, privacy, efficiency and ease-of-use are essential in optimizing productivity and ensuring data security. However, the unfortunate reality is that many NoSQL document databases fail to embody these important characteristics, leaving users frustrated - and often at risk.

The Windows Subsystem for Linux 2 will bypass the Windows 10 firewall and any configured rules, raising security concerns for those who use the feature - the main concern being a lack of awareness of this change.

The Apple T2 security chip has finally been jailbroken! Here's all you need to know about it. The latest update of checkra1n adds support for bridgeOS '' the operating system that powers the Apple T2 security chip. For what it's worth, the T2 chip is not A10 per se but it is derived from the Apple A10 Fusion architecture.

Eric S. Raymond, one of open-source's founding fathers, thinks we're nearing the last phase of the desktop wars . The winner? Windows'¦ running on Linux . "Google chose to save money and increase security by using Linux as the basis for Chrome OS . This worked out really well for Google. It can for Microsoft with -- let's take a blast from the past -- and call it Lindows as well."

The IPStorm botnet, which was first spotted targeting Windows systems last year, has quadrupled in size to reach 13,500 infected systems - and is now targeting Linux, Android and Mac devices.

The infamous FinSpy spyware has returned - and is now targeting Linux and macOS users. FinSpy is being used in new campaigns targeting dissident organizations in Egypt.

Patch management can be a complex and time-consuming process, and because of this, patches to fix vulnerabilities may not be applied before a hacker is able to breach an organization's security. The majority of organizations are not aware of these vulnerabilities until they have experienced a breach, at which point it is frustrating to learn that deploying a simple patch could have prevented the breach altogether.

With the release of Fedora 34, the popular Linux distro aims to further increase security by removing support for the disabling of SELinux at run-time.