Linux

Malicious Go Modules Deliver Disk-Wiping Linux Malware in Advanced Supply Chain Attack – Go Health Pro

by
Malicious Go Modules Deliver Disk-Wiping Linux Malware in Advanced Supply Chain Attack – Go Health Pro

May 03, 2025Ravie LakshmananSupply Chain Attack / Malware Cybersecurity researchers have discovered three malicious Go modules that include obfuscated code to fetch next-stage payloads that can irrevocably overwrite a Linux system’s primary disk and render it unbootable. The names of the packages are listed below – github[.]com/truthfulpharm/prototransform github[.]com/blankloggia/go-mcp github[.]com/steelpoor/tlsproxy “Despite appearing legitimate, these modules contained … Read more

Rogue npm Packages Mimic Telegram Bot API to Plant SSH Backdoors on Linux Systems – Go Health Pro

by
Rogue npm Packages Mimic Telegram Bot API to Plant SSH Backdoors on Linux Systems – Go Health Pro

Apr 19, 2025Ravie LakshmananLinux / Malware Cybersecurity researchers have uncovered three malicious packages in the npm registry that masquerade as a popular Telegram bot library but harbor SSH backdoors and data exfiltration capabilities. The packages in question are listed below – According to supply chain security firm Socket, the packages are designed to mimic node-telegram-bot-api, … Read more

FINALDRAFT Malware Exploits Microsoft Graph API for Espionage on Windows and Linux – Go Health Pro

by
FINALDRAFT Malware Exploits Microsoft Graph API for Espionage on Windows and Linux – Go Health Pro

Feb 13, 2025Ravie LakshmananMalware / Cyber Espionage Threat hunters have shed light on a new campaign targeting the foreign ministry of an unnamed South American nation with bespoke malware capable of granting remote access to infected hosts. The activity, detected in November 2024, has been attributed by Elastic Security Labs to a threat cluster it … Read more

Popular Linux orgs Freedesktop and Alpine Linux are scrambling for new web hosting – Go Health Pro

by
Popular Linux orgs Freedesktop and Alpine Linux are scrambling for new web hosting – Go Health Pro

Having worked “around the clock” to move from Google Cloud Platform after its open source credits there ran out, and now rushing to move off Equinix, Tissoires suggests a new plan: “[H]ave [freedesktop.org] pay for its own servers, and then have sponsors chip in.” “Popular without most users knowing it” Alpine Linux, a small, security-minded … Read more

Code found online exploits LogoFAIL to install Bootkitty Linux backdoor – Go Health Pro

by
Code found online exploits LogoFAIL to install Bootkitty Linux backdoor – Go Health Pro

Normally, Secure Boot prevents the UEFI from running all subsequent files unless they bear a digital signature certifying those files are trusted by the device maker. The exploit bypasses this protection by injecting shell code stashed in a malicious bitmap image displayed by the UEFI during the boot-up process. The injected code installs a cryptographic key … Read more