The Hacker News

SSHStalker Botnet Uses IRC C2 to Control Linux Systems via Legacy Kernel Exploits

Researchers uncover SSHStalker, an IRC botnet exploiting legacy Linux flaws and SSH servers to build persistent covert access.
Neowin

Chinese hackers exploit Linux with new WolfsBane malware

ESET researchers have recently discovered a new Linux backdoor, named WolfsBane, that is being used by the China-aligned Gelsemium APT group. This is the first known instance of Gelsemium using Linux ...
SecurityWeek

New ‘SSHStalker’ Linux Botnet Uses Old Techniques

The SSHStalker Linux botnet has ensnared 7,000 systems, deploying various scanners and malware, an IRC bot, and multiple kernel exploits.
Infosecurity-magazine.com

Critical Linux Flaws Discovered Allowing Root Access Exploits

Two new vulnerabilities have been discovered in widely deployed Linux components that could allow unprivileged users to gain root access across popular distributions. The first is a local privilege ...
Ars Technica

Code found online exploits LogoFAIL to install Bootkitty Linux backdoor

Unearthed sample likely works against Linux devices from Acer, HP, Fujitsu, and Lenovo. Machines vulnerable to the exploit include some models sold by Acer, HP, Fujitsu, and Lenovo when they ship with ...
Linux Journal

Linux Kernel Runtime Guard Reaches 1.0: A Major Milestone for Runtime Kernel Security

LKRG is a loadable kernel module designed to protect the Linux kernel at runtime. Instead of relying solely on compile-time hardening or static security features, LKRG actively monitors the kernel ...