New Symbiote malware infects all running processes on Linux systems

Status
Not open for further replies.

Lord Boltar

Well-Known Member
Joined
Nov 24, 2020
Messages
1,761
Reaction score
1,176
Credits
13,105
A newly discovered Linux malware known as Symbiote infects all running processes on compromised systems, steals account credentials, and gives its operators backdoor access.


After injecting itself into all running processes, the malware acts as a system-wide parasite, leaving no identifiable signs of infection even during meticulous in-depth inspections.


Symbiote uses the BPF (Berkeley Packet Filter) hooking functionality to sniff network data packets and to hide its own communication channels from security tools.


This novel threat was discovered and analyzed by BlackBerry and Intezer Labs researchers, who worked together to uncover all aspects of the new malware in a detailed technical report. According to them, Symbiote has been under active development since last year.

 


Bartman

Well-Known Member
Joined
Mar 14, 2022
Messages
380
Reaction score
336
Credits
2,661
 
Status
Not open for further replies.
$100 Digital Ocean Credit
Get a free VM to test out Linux!

Linux.org Hosting Donations
Consider making a donation

Members online


Top