Hackers develop Linux port of Cobalt Strike for new attacks
1 min read
Sep 14, 2021
Hackers have developed a Linux port of the Cobalt Strike penetration testing toolkit dubbed Vermilion Strike to evade malware detection.
Cyber criminals have developed a Linux port of the Cobalt Strike penetration testing tool that has been dubbed Vermilion Strike, security researchers have discovered.
The tool has been developed from scratch to avoid detection from malware scanners.
According to a report published by cloud security firm Intezer Labs, researchers last month discovered a fully undetected ELF implementation of Cobalt Strike’s beacon. The malware used Cobalt Strike’s Command and Control (C2) protocol when communicating to its C2 server and has remote access capabilities such as uploading files, running shell commands, and writing to files.
Related Articles
1 - 0 min read
Malicious Python Projects Targeting Linux, Windows Systems
1 - 0 min read
Tsurugi Linux: A Game-Changing DFIR Analysis Tool
1 - 0 min read
Supershell – Open-Source Botnet That Obtain SSH Shell Access
1 - 0 min read
What Linux Kernel Maintainers Do and Why They Need Your Help
