A malware botnet known as 'Ebury' has infected almost 400,000 Linux servers since 2009, with roughly 100,000 still compromised as of late 2023. ESET researchers have been following the financially ...

A stealthy Linux malware named 'sedexp' has been evading detection since 2022 by using a persistence technique not yet included in the MITRE ATT&CK framework. The malware was discovered by risk ...

ESET researchers have recently discovered a new Linux backdoor, named WolfsBane, that is being used by the China-aligned Gelsemium APT group. This is the first known instance of Gelsemium using Linux ...

Security researchers have uncovered a sophisticated malware campaign targeting Redis, a popular data store system. This campaign, dubbed “Migo,” employs novel tactics to compromise Redis servers, with ...

Chinese hackers have built new all-in-one malware to target Linux devices, a new report from cybersecurity researchers ESET, have said. The WolfsBane malware features a dropper, launcher, a backdoor, ...

A critical vulnerability in Apache ActiveMQ, identified as CVE-2023-46604, has been exposed, revealing an active exploitation scenario by the notorious Kinsing malware. According to an advisory ...

Linux has, for a long time, harbored a perception that it's largely impervious and doesn't require an antivirus suite in the same way that typical users may require on Windows. Many users of the ...

Hackers seen targeting misconfigured JuypterLab instances They host malware in polyglot files on image sharing sites The Koske malware mines different crypto tokens Security researchers recently ...

NerbianRAT, a remote access malware used by Magnet Goblin, is downloaded on systems initially compromised with critical Ivanti Connect Secure flaws. A financially motivated hacker group, tracked as ...

A botnet targeting Internet of Things devices running on the Linux operating system works by brute forcing credentials and downloading cryptomining software. See Also: Cracking the Code: Securing ...

The Linux Foundation last week emailed all of its users, warning them that an attacker had compromised LinuxFoundation.org and Linux.com, as well as their subdomains. The attacker may also have stolen ...

Threat actors are typosquatting popular Go packages such as Hypert and Layout to drop malware on Linux and macOS systems. In a new typosquatting campaign, threat actors are seen using malicious Go ...