NSA-linked Bvp47 Linux backdoor widely undetected for 10 years

Advisories

Discover Security Vulnerabilities News

NSA-linked Bvp47 Linux backdoor widely undetected for 10 years

30.Lock Globe Motherboard

A new report dives deep into technical aspects of a Linux backdoor now tracked as Bvp47 that is linked to the Equation Group, the advanced persistent threat actor tied to the U.S. National Security Agency.

Bvp47 survived until today almost undetected, despite being submitted to the Virus Total antivirus database for the first time close to a decade ago, in late 2013.

Until this morning, only one antivirus engine on Virus Total detected the Bvp47 sample. As the report spread in the infosec community, detection started to improve, being flagged by six engines at the moment of writing.

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.