Linux has become a popular target among cybercriminal groups, who have started infecting Linux machines via a fileless malware installation technique that until recently was more commonly used against Windows-based systems.
Linux-based machines are no longer considered a major deterrent for cybercriminal groups, who are embracing the operating system as a target. This is particularly true when workplaces leverage the cloud to deploy Linux-based containerization technology.
Case in point: researchers are warning that several cyber gangs have started infecting Linux machines via a fileless malware installation technique that until recently was more commonly used against Windows-based systems.
One of the gangs on the forefront of this trend is TeamTNT, which AT&T Alien Labs this week reported is using the new “Ezuri” downloader to decrypt, install and execute a final malware payload from memory, without ever writing to disk.
