#linux-malware

[ follow ]
#cloud-infrastructure #zig #post-exploitation #socks5-proxy #command-and-control #telecommunications-targeting
Information security
fromThe Hacker News
2 hours ago

Showboat Linux Malware Hits Middle East Telecom with SOCKS5 Proxy Backdoor

Showboat is a modular Linux post-exploitation malware used against a Middle East telecom provider, providing remote shell, file transfer, and SOCKS5 proxy capabilities.
Information security
fromThe Hacker News
1 week ago

Quasar Linux RAT Steals Developer Credentials for Software Supply Chain Compromise

Quasar Linux RAT targets developer systems to silently persist, harvest credentials, and enable post-compromise actions including tunneling, keylogging, and exfiltration.
Information security
fromTechzine Global
2 weeks ago

Quasar Linux malware targets DevOps environments

A new Linux malware named Quasar Linux (QLNX) targets developers, employing stealth techniques and extensive espionage capabilities to remain undetected.
#cloud-infrastructure
more#cloud-infrastructure
Information security
fromArs Technica
4 months ago

Never-before-seen Linux malware is "far more advanced than typical"

VoidLink is a modular Linux malware framework providing over 30 modules for stealthy reconnaissance, privilege escalation, lateral movement, and cloud-specific targeting.
Information security
fromThe Hacker News
4 months ago

New Advanced Linux VoidLink Malware Targets Cloud and container Environments

VoidLink is a modular, cloud-native Linux malware framework enabling long-term stealthy access to cloud and container environments, targeting developer tools and cloud credentials.
Information security
fromThe Hacker News
8 months ago

Linux Malware Delivered via Malicious RAR Filenames Evades Antivirus Detection

Phishing emails deliver RAR archives whose filenames contain Base64-encoded Bash commands that execute VShell via shell command injection when file names are parsed.
[ Load more ]