New ultra-stealthy Linux backdoor isn’t your everyday malware discovery

by
Dan Goodin
from Ars Technica - All content on (#606KE)
blurry-0s-and-1s-800x534.jpeg

Enlarge (credit: Getty Images / iStock)

Researchers have unearthed a discovery that doesn't occur all that often in the realm of malware: a mature, never-before-seen Linux backdoor that uses novel evasion techniques to conceal its presence on infected servers, in some cases even with a forensic investigation.

On Thursday, researchers from Intezer and The BlackBerry Threat Research & Intelligence Team said that the previously undetected backdoor combines high levels of access with the ability to scrub any sign of infection from the file system, system processes, and network traffic. Dubbed Symbiote, it targets financial institutions in Brazil and was first detected in November.

Researchers for Intezer and BlackBerry wrote:

Read 6 remaining paragraphs | Comments

index?i=fFG5bjkspkw:9OgRQrxBvUI:V_sGLiPB index?i=fFG5bjkspkw:9OgRQrxBvUI:F7zBnMyn index?d=qj6IDK7rITs index?d=yIl2AUoC8zA
External Content
Source RSS or Atom Feed
Feed Location http://feeds.arstechnica.com/arstechnica/index
Feed Title Ars Technica - All content
Feed Link https://arstechnica.com/
Reply 0 comments