One Article Review
| Source |  CSO |
|---|---|
| Identifiant | 5057805 |
| Date de publication | 2022-06-09 07:48:00 (vue: 2022-06-09 15:05:10) |
| Titre | Hackers using stealthy Linux backdoor Symbiote to steal credentials |
| Texte | Researchers have come across a stealthy Linux backdoor that uses sophisticated techniques to hide itself on compromised servers and steal credentials. Dubbed Symbiote because it injects itself into existing processes, the threat has been in development since at least November 2021 and seems to have been used against the financial sector in Latin America."Symbiote is a malware that is highly evasive," researchers from BlackBerry said in a new report. "Since the malware operates as a userland level rootkit, detecting an infection may be difficult. Network telemetry can be used to detect anomalous DNS requests and security tools such as AVs and EDRs should be statically linked to ensure they are not “infected” by userland rootkits."To read this article in full, please click here |
| Envoyé | Oui |
| Condensat | 2021 across against america anomalous are article avs backdoor because been blackberry can click come compromised credentials detect detecting development difficult dns dubbed edrs ensure evasive existing financial from full hackers has have here hide highly infection injects itself latin least level linked linux malware may network new not november operates please processes read report requests researchers rootkit rootkits said sector security seems servers should since sophisticated statically steal stealthy such symbiote techniques telemetry threat tools used userland uses using “infected” |
| Tags | Malware Tool Threat |
| Stories | |
| Notes | |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.