Chinese hackers target telcos with new Linux, Windows malware

A Chinese cyber-espionage campaign has been targeting telecommunications providers with newly discovered Linux and Windows ...
Bleeping Computer

Defending against malware persistence techniques with Wazuh

Malware persistence techniques enable attackers to maintain access to compromised endpoints despite system reboots, credential changes, or other disruptions. Common methods include altering ...
CSOonline

New malware turns Linux systems into P2P attack networks

Researchers found a Linux malware called QLNX that combines P2P networking, rootkits, PAM backdoors, and fileless execution to persist and evade takedowns. Attackers have found a new way to turn Linux ...
Hosted on MSN

Antivirus vendors fail to spot persistent, nasty, stealthy Linux backdoor

Nextron researcher Pierre-Henri Pezier says the company named the malware "Plague" as its deobfuscated code contains the text "Uh. Mr. The Plague, sir? I think we have a hacker" - a line from the 1995 ...
TechRepublic

AI Turns Panda Image Into ‘New Breed of Persistent Malware’

AI-assisted malware named Koske is hidden inside panda images, silently hijacking Linux machines for crypto mining while evading detection. Hackers are embedding AI-generated malware hidden inside ...
Dark Reading

Complex VoidLink Linux Malware Created by AI

An advanced cloud-first malware framework targeting Linux systems was created almost entirely by artificial intelligence (AI), a move that signals significant evolution in the use of the technology to ...
Hosted on MSN

I tore apart the most common Linux malware in a sandbox, and it uses layer after layer of tricks to survive

There's a common misconception that Linux is somehow immune to malware. It's not hard to see why people think that; Linux's market share on the desktop is small, and the kind of people who run Linux ...
Infosecurity-magazine.com

New Chinese-Made Malware Framework Targets Linux-Based Cloud Environments

A new Linux malware framework linked to Chinese-affiliated actors has been discovered by security researchers at Check Point Research. This highly modular framework, named VoidLink by its developers, ...
Infosecurity-magazine.com

Linux Malware WolfsBane and FireWood Linked to Gelsemium APT

Recent discoveries have unveiled two new malware strains, WolfsBane and FireWood, targeting Linux systems. These advanced tools have been attributed by ESET to the notorious Gelsemium Advanced ...
heise online

QLNX: New Remote Access Trojan targets Linux developers

Quasar Linux (QLNX) is not an operating system, but a supply chain attack tool that is difficult to detect and remove. With Quasar Linux (QLNX), a new Remote Access Trojan (RAT) has emerged, targeting ...
CSOonline

AI-forged panda images hide persistent cryptomining malware ‘Koske’

A new malware strain named ‘Koske’ is delivering crypto-mining payloads through dropper files posing as benign panda pictures. According to Aqua Nautilus, the cybersecurity team at Aqua Security, the ...
Dark Reading

Pro-Russian Hackers Use Linux VMs to Hide in Windows

Threat actors supporting Russia's geopolitical interests are using Linux-based virtual machines (VMs) to obfuscate their activities from Windows endpoint security tools. The group is tracked as "Curly ...