Never-before-seen Linux malware is “far more advanced than typical”

Welcome • User Guide
ToS • Privacy • Canary
Donate • Bugs • License

©2025 Poal.co

1.4K

•

Never-before-seen Linux malware is “far more advanced than typical” (arstechnica.com)

From the post:

>Researchers have discovered a never-before-seen framework that infects Linux machines with a wide assortment of modules that are notable for the range of advanced capabilities they provide to attackers. The framework, referred to as VoidLink by its source code, features more than 30 modules that can be used to customize capabilities to meet attackers’ needs for each infected machine. These modules can provide additional stealth and specific tools for reconnaissance, privilege escalation, and lateral movement inside a compromised network. The components can be easily added or removed as objectives change over the course of a campaign.

Archive: https://archive.today/ltSXH From the post: >>Researchers have discovered a never-before-seen framework that infects Linux machines with a wide assortment of modules that are notable for the range of advanced capabilities they provide to attackers. The framework, referred to as VoidLink by its source code, features more than 30 modules that can be used to customize capabilities to meet attackers’ needs for each infected machine. These modules can provide additional stealth and specific tools for reconnaissance, privilege escalation, and lateral movement inside a compromised network. The components can be easily added or removed as objectives change over the course of a campaign.

You are currently inside a comment thread.

Click here to see all the comments (3).

[–] • 1 pt

No confirmation of it in the wild. Sounds like Spectre and Heartbleed. Bunch of patches and migrations for something you will never see in real life.

link