Chinese hackers target Linux with new WolfsBane malwareBy Bill Toulas November 21, 2024

Condobloke

Well-Known Member
Joined
Apr 30, 2017
Messages
10,168
Reaction score
8,173
Credits
70,526
A new Linux backdoor called 'WolfsBane' has been discovered, believed to be a port of Windows malware used by the Chinese 'Gelsemium' hacking group.

ESET security researchers who analyzed WolfsBane report that WolfsBane is a complete malware tool featuring a dropper, launcher, and backdoor, while it also uses a modified open-source rootkit to evade detection.

Read On
EDit to Add : The term APT Group is used....... :

Advanced persistent threat



An advanced persistent threat is a stealthy threat actor, typically a state or state-sponsored group, which gains unauthorized access to a computer network and remains undetected for an extended period. Wikipedia
 
  • Like
Reactions: Zev


"The trend of APT groups focusing on Linux malware is becoming more noticeable. We believe this shift is due to improvements in Windows email and endpoint security, such as the widespread use of endpoint detection and response (EDR) tools and Microsoft's decision to disable Visual Basic for Applications (VBA) macros by default. Consequently, threat actors are exploring new attack avenues, with a growing focus on exploiting vulnerabilities in internet-facing systems, most of which run on Linux."

❖ ESET
 
  • Like
Reactions: Zev

Staff online


Top