Stealthy Linux rootkit found in the wild after going undetected for 2 years
by Dan Goodin from Ars Technica - All content on (#6H0MB)
Stealthy and multifunctional Linux malware that has been infecting telecommunications companies went largely unnoticed for two years until being documented for the first time by researchers on Thursday.
Researchers from security firm Group-IB have named the remote access trojan Krasue," after a nocturnal spirit depicted in Southeast Asian folklore floating in mid-air, with no torso, just her intestines hanging from below her chin." The researchers chose the name because evidence to date shows it almost exclusively targets victims in Thailand and poses a severe risk to critical systems and sensitive data given that it is able to grant attackers remote access to the targeted network.
According to the researchers: