This new Linux malware has a sneaky way of staying hidden

Rekoobe malware has been used by the group APT31 or what Microsoft calls Zirconium, a China state-sponsored threat actor. Rekoobe is based on TinyShell, an open source project for a UNIX backdoor. There are references in the Syslogk rootkit to TinyShell dating back to December 13, 2018. The Rekoobe sample Avast found was embedded in a fake SMPT mail server.

Link: This new Linux malware has a sneaky way of staying hidden
via http://www.zdnet.com

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

%d bloggers like this: