XorDdos Malware Targets Linux Systems: Act Quickly to Protect Devices
Linux systems are becoming prime targets for the XorDdos malware, a new report claims.
Linux Hacks & Cracks - Page 9
We have thousands of posts on a wide variety of open source and security topics, conveniently organized for searching or just browsing.
SocksEscort Linux Router Malware Botnet Takedown Operation Lightning
Authorities have dismantled SocksEscort, a service that sold access to a large proxy network built from compromised residential routers. Investigators say much of the infrastructure sat on infected SOHO networking devices, many running embedded Linux...
Linux Users Targeted as Crypto-stealing Malware Hits Snap Packages
We’ve been telling ourselves that Snap apps are sandbox...
UNC2891: Banking Heists with Linux Malware Exploiting Physical Access
UNC2891 has been working its way through gaps in ATM se...
Discover Hacks/Cracks News
Rising Malware Threats in Windows Subsystem for Linux (WSL)
The number of malware strains targeting WSL is growing.
Enemybot Botnet Exploits Web Servers and Android Devices Effectively
A nascent Linux-based botnet named Enemybot has expanded its capabilities to include recently disclosed security vulnerabilities in its arsenal to target web servers, Android devices, and content management systems (CMS).
Cheers Ransomware Threatens VMware ESXi Server Security
A new ransomware named ‘Cheers’ has appeared in the cybercrime space and has started its operations by targeting vulnerable VMware ESXi servers.
Malicious Package 'Pymafka' Discovered in PyPI with Backdoor Threats
Yet another malicious Python package has been spotted in the PyPI registry performing supply chain attacks to drop Cobalt Strike beacons and backdoors on Windows, Linux, and macOS systems.
XorDDoS Botnet Raises 254% Activity Targeting Linux SSH Servers
Protect your Linux servers from XorDdos, a botnet scanning the internet for SSH servers with weak passwords, Microsoft warns.
BPFdoor Malware: Remote Access Threat To Linux And Solaris Systems
A recently discovered backdoor malware called BPFdoor has been stealthily targeting Linux and Solaris systems without being noticed for more than five years.
Thousands of Linux Systems Compromised by BPFDoor Chinese Malware
Researchers have uncovered a highly-evasive Chinese surveillance tool using the Berkeley Packet Filter (BPF). The malware, dubbed BPFDoor, is present on “thousands” of Linux systems, its controller has gone almost completely unnoticed by endpoint protection vendors despite it being in use for at least five years.
Hive Ransomware Converts VMware ESXi Encryptor to Rust with New Features
The Hive ransomware operation has converted their VMware ESXi Linux encryptor to the Rust programming language and added new features to make it harder for security researchers to snoop on victim's ransom negotiations.
B1txor20: New Botnet Exploiting Log4j To Attack Arm And x86 Systems
A new Linux botnet, B1txor20, that targets Arm and 64-bit x86 systems shows log4j isn't going away any time soon.
NginRAT Attack on eCommerce: Remote Access Trojan via Nginx
eCommerce servers are being targeted with remote access malware that hides on Nginx servers in a way that makes it virtually invisible to security solutions. “NginRAT essentially hijacks a host Nginx application to stay undetected. To do that, NginRAT modifies core functionality of the Linux host system. When the legitimate Nginx web server uses such functionality (eg dlopen), NginRAT intercepts it to inject itself.”
CronRat: Linux Remote Access Trojan Stealing Data from eCommerce Sites
Security researchers have discovered a Linux-based remote access trojan (RAT) that uses an unusual stealth technique to remain out of sight from security products. The malware, dubbed CronRat, hides in the calendar subsystem of Linux servers (“cron”) on a non-existent day, 31 February, according to a blog post by security researchers at Sansec.
Linux Malware Deployment: E-Commerce Backdoor and Web Skimmer Attack
Attackers are deploying a Linux backdoor on compromised e-commerce servers after injecting a credit card skimmer into online shops' websites.
LightBasin's Cyber Espionage: Targeting Linux Servers in Telecoms
The stealthy LightBasin hacking group (also known as UNC1945) is infiltrating telecommunications companies around the world in a campaign that researchers have linked to intelligence gathering and cyber espionage. LightBasin's primary focus is on Linux and Solaris servers that are critical for running telecommunications infrastructure – and are likely to have less security measures in place than Windows systems.
Stop Npm Malware: Protect Linux and Other Systems from Cryptominers
Multiple malicious packages have been identified on the npm registry this month. These packages disguise themselves as legitimate JavaScript libraries, but have been caught launching cryptominers on Linux, Windows and MacOS machines.
FontOnLake Malware Threat: Backdoor Delivery via Utilities
The newly discovered FontOnLake malware family delivers backdoor and rootkit components to infect Linux systems concealed in legitimate binaries.
RansomEXX Threat Actor Causes File Damage On Linux Systems
It has been discovered that the RansomExx ransomware gang does not correctly lock Linux files during encryption, leading to potentially corrupted files.
Capoae Malware Targets WordPress And Linux: Cryptocurrency Threats
The new Capoae Go malware, which targets WordPress installs and Linux systems, highlights the increase of cyberattacks designed to deploy cryptocurrency-mining payloads.
Vermilion Strike: New Linux Cobalt Strike Port Boosts Attack Capabilities
Hackers have developed a Linux port of the Cobalt Strike penetration testing toolkit dubbed Vermilion Strike to evade malware detection.
HolesWarm Cryptominer Hits Linux Servers: 1,000 Cloud Hosts Affected
The HolesWarm botnet cryptominer has already compromised 1,000-plus clouds since June.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!