The Hacker News

React2Shell Exploitation Delivers Crypto Miners and New Malware Across Multiple Sectors

Critical React Server Components flaw (CVE-2025-55182) fuels automated attacks dropping miners and multiple new Linux malware ...
SecurityWeek

Wide Range of Malware Delivered in React2Shell Attacks

Security firms have seen cryptocurrency miners, Linux backdoors, botnet malware, and post-exploitation implants in ...
XDA Developers on MSN

Linux anti-virus suites aren't as pointless as they once were

Linux is growing, and anti-virus suites are starting to appear. But why?

North Korean hackers exploit React2Shell flaw in EtherRAT malware attacks

A new malware implant called EtherRAT, deployed in a recent React2Shell attack, runs five separate Linux persistence ...
Yahoo

Linux devices hit with even more new malware, this time from Chinese hackers

Chinese hackers have built new all-in-one malware to target Linux devices, a new report from cybersecurity researchers ESET, have said. The WolfsBane malware features a dropper, launcher, a backdoor, ...
Bleeping Computer

New Linux malware Hadooken targets Oracle WebLogic servers

Hackers are targeting Oracle WebLogic servers to infect them with a new Linux malware named "Hadooken," which launches a cryptominer and a tool for distributed denial-of-service (DDoS) attacks. The ...
Infosecurity-magazine.com

DaggerFly-Linked Linux Malware Targets Network Appliances

A new malware strain, ELF/Sshdinjector.A!tr, has been linked to the DaggerFly espionage group and used in the Lunar Peek campaign to target Linux-based network appliances. Its primary function is data ...
Infosecurity-magazine.com

Sophisticated Malware Campaign Targets Windows and Linux Systems

A newly uncovered malware campaign targeting both Windows and Linux systems has revealed advanced evasion and credential theft techniques, according to the Sysdig Threat Research Team (TRT). The ...
PC Magazine

'Bootkitty' Malware Can Infect a Linux Machine's Boot Process

Original story: Security researchers have uncovered rare malware that can infect a Linux machine’s boot process, making it harder to detect and remove. The malware is known as a bootkit, which is ...
Neowin

Chinese hackers exploit Linux with new WolfsBane malware

ESET researchers have recently discovered a new Linux backdoor, named WolfsBane, that is being used by the China-aligned Gelsemium APT group. This is the first known instance of Gelsemium using Linux ...
Computerworld

‘Less’ is more to malware authors targeting Linux users

Using the “less” Linux command to view the contents of files downloaded from the Internet is a dangerous operation that can lead to remote code execution, according to a security researcher. At first ...
Hosted on MSN

Linux devices hit with even more new malware, this time from Chinese hackers

ESET discovers a new piece of malware called WolfsBane This malware features a dropper, a launcher, and a backdoor It is being used by a group known as Gelsemium Chinese hackers have built new ...