A new covert Linux kernel rootkit named Syslogk has been spotted under development in the wild and cloaking a malicious payload that can be remotely commandeered by an adversary using a magic network traffic packet.
"The Syslogk rootkit is heavily based on Adore-Ng but incorporates new functionalities making the user-mode application and the kernel rootkit hard to detect," Avast security
https://thehackernews.com/2022/06/new-syslogk-linux-rootkit-lets.html?utm_source=dlvr.it&utm_medium=blogger
No comments:
Post a Comment