Linux Hacks & Cracks - Page 5

Discover Hacks/Cracks News

SysUpdate Malware Strikes Again with Linux Version and New Evasion Tactics

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

The threat actor known as Lucky Mouse has developed a Linux version of a malware toolkit called SysUpdate, expanding on its ability to target devices running the operating system.

LinuxSecurity.com Team
Mar 06, 2023

Iron Tiger Hackers Create Linux Version of Their Custom Malware

The APT27 hacking group, aka "Iron Tiger," has prepared a new Linux version of its SysUpdate custom remote access malware, allowing the Chinese cyberespionage group to target more services used in the enterprise.

LinuxSecurity.com Team
Mar 03, 2023

Linux Support Expands Cyber Spy Group's Arsenal

An infamous Chinese cyber-hacking team has extended its SysUpdate malware framework to target Linux systems.

LinuxSecurity.com Team
Mar 03, 2023

691 Malicious npm Packages and 49 PyPI Components Containing Crypto-Miners, Remote Access Trojans Discovered

Security researchers have discovered yet another sizable haul of malicious packages on the open source registries npm and PyPI. These packages, which could cause problems if developers downloaded them without realizing it, can be found here.

LinuxSecurity.com Team
Feb 22, 2023

Hackers Are Mass Infecting Servers Worldwide by Exploiting a Patched Hole

An explosion of cyberattacks is infecting servers around the world with crippling ransomware by exploiting a vulnerability that was patched two years ago.

LinuxSecurity.com Team
Feb 22, 2023

Researchers Uncover 700+ Malicious Open Source Packages

Security researchers have discovered another sizeable haul of malicious packages on the npm and PyPI open source registries, which could cause issues if unwittingly downloaded by developers.

LinuxSecurity.com Team
Feb 22, 2023

The Unrelenting Menace of the LockBit Ransomware Gang

The notorious Russian-speaking cybercriminals grew successful by keeping a low profile. But now they have a target on their backs.

LinuxSecurity.com Team
Jan 26, 2023

Hackers Deploy Open-Source Tool Sliver C2, Replacing Cobalt Strike, Metasploit

An increasing number of threat actors have started relying on the command-and-control (C2) framework Sliver as an open-source alternative to tools such as Metasploit and Cobalt Strike.

LinuxSecurity.com Team
Jan 24, 2023

Hackers Use Golang Source Code Interpreter to Evade Detection

A Chinese-speaking hacking group tracked as ‘DragonSpark’ was observed employing Golang source code interpretation to evade detection while launching espionage attacks against organizations in East Asia.

LinuxSecurity.com Team
Jan 24, 2023

Stealthy Malware Distribution Involves Polyglot Files

Threat actors have been leveraging polyglot and malicious Java archive files to distribute the StrRAT and Ratty remote access trojans to evade detection by security solutions, The Hacker News reports.

LinuxSecurity.com Team
Jan 19, 2023

GhostSec’s Claimed ICS Ransomware Attack Questioned

SecurityWeek reports that pro-Ukraine hacktivist group GhostSec is having its claims of launching the first-ever ransomware attack against an industrial control system device questioned by cybersecurity experts.

LinuxSecurity.com Team
Jan 18, 2023

Python Package Index Found Stuffed with AWS Keys and Malware

The Python Package Index, or PyPI, continues to surprise and not in a good way. Ideally a source of Python libraries that developers can include in their projects to save time, PyPI has again been caught hosting packages with live Amazon Web Services (AWS) keys and data-stealing malware.

LinuxSecurity.com Team
Jan 16, 2023

Security Researchers Report Linux Malware with Cryptocurrency Miner Payload

South Korean cybersecurity firm AhnLab Security Emergency Response Center said it has observed a new Linux malware in the wild that deploys a cryptocurrency miner on infiltrated systems using a shell script compiler downloader, reports The Hacker News. According to the report, a successful breach will be followed by execution of the shc downloader malware to fetch the XMRig cryptocurrency miner software and a Perl-based DDoS IRC Bot that allows the attacker to connect through a remote server and proceed to mount distributed denial-of-service attacks.

LinuxSecurity.com Team
Jan 15, 2023

PyTorch Poisoned in Software Supply Chain Attack

If you downloaded PyTorch-nightly on Linux via pip between Dec. 25, 2022, and Dec. 30, 2022, you've got trouble.

LinuxSecurity.com Team
Jan 15, 2023

This New Linux Malware Floods Machines with Cryptominers and DDoS Bots

Cybersecurity researchers have spotted a new Linux malware downloader that targets poorly defended Linux servers with cryptocurrency miners and DDoS IRC bots.

LinuxSecurity.com Team
Jan 09, 2023

PyTorch Suffers Supply Chain Attack via Dependency Confusion

Users who deployed the nightly builds of PyTorch between Christmas and New Year's Eve likely received a rogue package as part of the installation that siphoned off sensitive data from their systems. The incident was the result of an attack called dependency confusion that continues to impact package managers and development environments if hardening steps are not taken.

LinuxSecurity.com Team
Jan 05, 2023

New shc-based Linux Malware Targeting Systems with Cryptocurrency Miner

A new Linux malware developed using the shell script compiler has been observed deploying a cryptocurrency miner on compromised systems.

LinuxSecurity.com Team
Jan 05, 2023

PyTorch: Machine Learning toolkit pwned from Christmas to New Year

PyTorch is one of the most popular and widely-used machine learning toolkits out there. Originally developed and released as an open-source project by Facebook, now Meta, the software was handed over to the Linux Foundation in late 2022, which now runs it under the aegis of the PyTorch Foundation.

LinuxSecurity.com Team
Jan 02, 2023

New Linux Malware Uses 30 Plugin Exploits to Backdoor WordPress Sites

A previously unknown Linux malware has been exploiting 30 vulnerabilities in multiple outdated WordPress plugins and themes to inject malicious JavaScript.

LinuxSecurity.com Team
Jan 02, 2023

Researchers Smell a Cryptomining Chaos RAT Targeting Linux Systems

A type of cryptomining malware targeting Linux-based systems has added capabilities by incorporating an open source remote access trojan called Chaos RAT with several advanced functions that bad guys can use to control remote operating systems.

LinuxSecurity.com Team
Dec 14, 2022

Linux Hacks & Cracks - Page 5

Lessons from Bootkitty: Securing Linux Systems Against UEFI Intrusions

Perfctl Unveiled: Risks, Detection, and Proactive Defense Measures

Unveiling the WolfsBane Backdoor: Gelsemium's Linux Variant of Gelsevirine