Packagist packages hid malicious package.json scripts, enabling Linux binary execution during installs and workflows.

Showboat targets Linux telecom systems since mid-2022, enabling C2 access, proxying, and file theft across multiple countries ...

A Chinese cyber-espionage campaign has been targeting telecommunications providers with newly discovered Linux and Windows ...

"Showboat" doesn't show off, but clearly it doesn't need to, as it's long helped China spy on small market communications ...

Newly discovered malware tied to China-linked actors breached telecom providers across Asia and the Middle East, highlighting ...

One of North Korea's most sophisticated threat groups has been hiding remote access malware for macOS and Linux inside of open source Python packages. North Korean advanced persistent threats (APTs) ...

Unfortunately, the popular Nintendo Wii U emulator Cemu was recently attacked, with it serving up malware in certain Linux ...

To learn more about our editorial approach, explore The Direct Message methodology. Imagine opening an email at work. The attachment looks routine. You click it, nothing obvious happens, and you move ...

A new malware strain, ELF/Sshdinjector.A!tr, has been linked to the DaggerFly espionage group and used in the Lunar Peek campaign to target Linux-based network appliances. Its primary function is data ...

Recent discoveries have unveiled two new malware strains, WolfsBane and FireWood, targeting Linux systems. These advanced tools have been attributed by ESET to the notorious Gelsemium Advanced ...

Chinese hackers targeted telecom providers using new Linux and Windows malware called Showboat and JFMBackdoor.

A new Linux backdoor called 'WolfsBane' has been discovered, believed to be a port of Windows malware used by the Chinese 'Gelsemium' hacking group. ESET security researchers who analyzed WolfsBane ...