Stay Informed about Linux Hacks, Cracks, & Vulnerabilities

Discover Hacks/Cracks News

U.S. Investigation into China-Backed Telecom Companies Hack: The Role & Risks of Encryption Backdoors

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

U.S. authorities are on high alert as they investigate an alleged Chinese state-sponsored hack targeting major U.S. telecommunications companies. This attack has reignited debate about encryption backdoors, an ongoing contention among security practitioners.

Brittany Day
Oct 16, 2024

FASTCash Linux Malware: A New Cybercrime Menace Targeting Payment Switch Systems

As malware threats evolve to increasingly target Linux systems, admins and organizations must stay up-to-date on the latest Linux malware variants and strategies for detecting and preventing attacks. Security researcher HaxRob recently discovered a new Linux variant of the FASTCash malware, which targets payment switches to enable unauthorized ATM withdrawals.

Anthony Pell
Oct 16, 2024

The Infiltration of Supply Chain Attacks in Open-Source Software Management

Open-source projects are renowned for their collaborative nature and widespread adoption, yet more sophisticated supply chain attacks target them than ever. Checkmarx researchers recently identified that malicious actors are exploiting entry points into popular package ecosystems such as PyPI (Python's package index) and npm (Node.js package manager) to Trojanize command-line interface (CLI) commands from running.

Brittany Day
Oct 15, 2024

Perfctl Unveiled: Risks, Detection, and Proactive Defense Measures

Security researchers have discovered a sophisticated strain of malware targeting Linux servers dubbed Perfctl. Its dual purpose is mining cryptocurrency and proxyjacking.

Brittany Day
Oct 05, 2024

Protecting Apache2: Insights into a New Linux Malware Threat

Elastic researchers recently identified an advanced Linux malware campaign targeting Apache2 web servers, underscoring the need for sysadmins and cybersecurity specialists to be increasingly aware of the growing Linux malware threat. Constant vigilance in cybersecurity is necessary to guard systems from emerging attacks, especially as cyber threats continue to advance and become more challenging to detect.

Brittany Day
Oct 03, 2024

Emerging Mallox Ransomware Variant Targets Linux Using Kryptina Code

A new variant of the Mallox ransomware, which traditionally targeted Windows systems, has been observed targeting Linux environments. This ransomware strain is based on the leaked source code of the Kryptina ransomware.

Brittany Day
Sep 24, 2024

TeamTNT Hackers Attacking VPS Servers Running CentOS

Security researchers have recently observed an alarming resurgence of TeamTNT, a notorious hacking group known for targeting cloud infrastructures. Their latest campaign zeroes in on Virtual Private Server (VPS) environments running CentOS, particularly version 7.

Anthony Pell
Sep 23, 2024

Unmasking Cicada3301: Examining the Threat of the New Rust-Based Ransomware

Ransomware has long been a severe threat to organizations and admins alike. Recently, cybersecurity researchers discovered a new variant called Cicada3301, which some experts believe has links with BlackCat (aka ALPHV) due to similarities in operations. Cicada3301 is a Rust-based ransomware that targets Windows and Linux/ESXi hosts.

Brittany Day
Sep 03, 2024

A New Era of Threats: Double-Extortion Ransomware Targeting Linux Machines

As cybersecurity evolves, so too has its threats. Symantec recently identified an emerging threat aimed at Linux systems. This new type of ransomware (called double extortion by its creators) encrypts files and exfiltrates and holds onto data, demanding ransom payments in return. Such sophisticated cybercriminal tactics highlight their audacity while attacking many enterprise and cloud environments - an audacious move by cybercriminals targeting such essential infrastructure as server farms.

Anthony Pell
Aug 13, 2024

Play Ransomware Group Unleashes New Threat on ESXi Environments: Analysis & Mitigation Strategies

The Play ransomware group, well-known for its double-extortion tactics, recently unveiled a Linux variant targeting ESXi environments. This development represents a significant evolution of ransomware strategies, and admins and businesses must understand these threats to implement effective defenses against them.

Brittany Day
Jul 23, 2024

The Hidden Dangers in Your Dependencies: Responding to Trojanized jQuery Attacks

Security professionals and system administrators face growing cyber threats in today's digital environment, making defending systems increasingly challenging. A recent discovery by Phylum revealed a sophisticated large-scale operation targeting Node Package Manager (npm), GitHub repositories, and Content Delivery Networks (CDNs) via trojanized versions of the jQuery JavaSecript library.

Brittany Day
Jul 10, 2024

Exploring Snowblind: A Fresh Take on Android Malware Exploiting seccomp

Cybersecurity threats continue to emerge regularly, and Promon's security team recently identified one such novel threat, Snowblind. This malware targets Android apps used for banking apps in Southeast Asia using an unconventional exploit method involving seccomp, a Linux kernel feature. Snowblind first surfaced through Promon partner i-Sprint's discovery and represents a significant shift in attack vectors in that region.

Anthony Pell
Jun 27, 2024

Invisible Intrusions: Analyzing the Clever Concealment of the xz Linux Backdoor

The recent discovery of a backdoor in Linux's xz compression tool has shed light on cybercriminals' ingenious methods of gaining entry and remaining undetected within critical infrastructure foundations. The xz backdoor presents an acute threat to security and system integrity, and its creators leveraged sophisticated methods to remain undetected.

Brittany Day
Jun 26, 2024

Securing WordPress: Combating a Surge in Supply-Chain Backdoor Attacks

Wordfence security researchers recently shed light on an infamous supply chain attack that may have affected as many as 36,000 WordPress websites. Five widely used plugins were infected with malware, which opened a backdoor that allowed attackers to manipulate SEO elements and gain administrative access. This shocking discovery should warn developers, administrators, and website owners about the dangers lurking within software supply chains.

Brittany Day
Jun 25, 2024

RansomHub Unmasked: Protecting Linux Infrastructure Against High-Stakes Ransomware

RansomHub, a Ransomware-as-a-Service (RaaS) platform, has emerged as a significant threat to organizations around the globe. Targeting Windows, Linux, and ESXi systems with malware written in Go and C++ programming languages, RansomHub quickly made waves in the cybercrime landscape.

Brittany Day
Jun 23, 2024

Understanding & Protecting Against the New Noodle RAT Backdoor Threat

A new backdoor, "Noodle RAT" has caused widespread alarm across the cybersecurity landscape. Research highlights this previously undisclosed malware used by Chinese-speaking groups engaged in cybercrime and espionage activities.

Dave Wreski
Jun 11, 2024

Practical Protection Measures Against New Gitloker Attacks Targeting GitHub Repos

Gitloker attacks have emerged with increased frequency in recent weeks, targeting GitHub repositories by wiping them clean of all content before demanding ransom for accessing accounts using stolen user credentials. These attacks threaten to use this stolen data unless an appropriate ransom payment is received.

Brittany Day
Jun 07, 2024

Practical Advice for Protecting Against New TargetCompany Linux Ransomware Variant

Security researchers have recently identified an innovative Linux ransomware variant developed by the TargetCompany ransomware group. This variant targets ESXi environments and uses a custom shell script for payload delivery and execution, something not previously observed by TargetCompany operations.

Anthony Pell
Jun 06, 2024

Kinsing Hacker Group Exploits More Flaws, Expands Cryptojacking Botnet

The Kinsing hacker group, or H2Miner, has been orchestrating illicit cryptocurrency mining campaigns since 2019 and poses a persistent security threat. The group continuously evolves its toolkit by integrating newly disclosed vulnerabilities to expand its botnet.

Dave Wreski
Jun 03, 2024

400k Linux Servers Hacked in Massive Cryptocurrency-Mining Botnet

As cybersecurity practitioners, we are no strangers to the constant threat of malicious actors and the importance of remaining vigilant to protect our systems. Security researchers have identified a massive botnet comprising over 400,000 compromised Linux servers, reinforcing the need to stay alert and implement robust security measures. Let's examine the significance of this discovery and what we can learn from it to protect against future attacks.

Brittany Day
Jun 03, 2024

Linux Hacks & Cracks

U.S. Investigation into China-Backed Telecom Companies Hack: The Role & Risks of Encryption Backdoors

FASTCash Linux Malware: A New Cybercrime Menace Targeting Payment Switch Systems

The Infiltration of Supply Chain Attacks in Open-Source Software Management

Discover Hacks/Cracks News

U.S. Investigation into China-Backed Telecom Companies Hack: The Role & Risks of Encryption Backdoors

FASTCash Linux Malware: A New Cybercrime Menace Targeting Payment Switch Systems

The Infiltration of Supply Chain Attacks in Open-Source Software Management

Perfctl Unveiled: Risks, Detection, and Proactive Defense Measures

Protecting Apache2: Insights into a New Linux Malware Threat

Emerging Mallox Ransomware Variant Targets Linux Using Kryptina Code

TeamTNT Hackers Attacking VPS Servers Running CentOS

Unmasking Cicada3301: Examining the Threat of the New Rust-Based Ransomware

A New Era of Threats: Double-Extortion Ransomware Targeting Linux Machines

Play Ransomware Group Unleashes New Threat on ESXi Environments: Analysis & Mitigation Strategies

The Hidden Dangers in Your Dependencies: Responding to Trojanized jQuery Attacks

Exploring Snowblind: A Fresh Take on Android Malware Exploiting seccomp

Invisible Intrusions: Analyzing the Clever Concealment of the xz Linux Backdoor

Securing WordPress: Combating a Surge in Supply-Chain Backdoor Attacks

RansomHub Unmasked: Protecting Linux Infrastructure Against High-Stakes Ransomware

Understanding & Protecting Against the New Noodle RAT Backdoor Threat

Practical Protection Measures Against New Gitloker Attacks Targeting GitHub Repos

Practical Advice for Protecting Against New TargetCompany Linux Ransomware Variant

Kinsing Hacker Group Exploits More Flaws, Expands Cryptojacking Botnet

400k Linux Servers Hacked in Massive Cryptocurrency-Mining Botnet

LinuxSecurity Poll

Which open source security automation tool do you use to protect against vulnerabilities?

Get the Latest News & Insights

News

Advisories

HOWTOs

Features

About Us

Powered By