New Linux Malware Infects All Running Processes
Security researchers from Intezer have reported a new Linux malware variant called OrBit.
“The malware implements advanced evasion techniques and gains persistence on the machine by hooking key functions, provides the threat actors with remote access capabilities over SSH, harvests credentials, and logs TTY commands,” reports Nicole Fishbein.
OrBit steals information from different commands and utilities and stores it in specific files on the machine. Once the malware is installed, it will infect all processes running on the machine.
Technical details about how OrBit works are available from Intezer.
07/18/2022
Topics
12.04 LTS
16 cores
8 cores
AI
AMD
AMD-V
AMI
Active Directory
Administration
Amazon AWS
Amazon CloudFront
Amazon Machine Images
Anaconda
Analytics
Ansible
Apache
Apache Deltacloud
Apache benchmarking tool
ab
acceleration
acquisition
admin tools
agedu
alert
amazon
analysis
analysis
anticipatory
application performance