brent saner via plug on 24 Mar 2021 13:52:27 -0700

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] Chinese state hackers - new linux malware

From what I was able to find, an infection doesn't even profile the host system until it reaches a box in the C2C pool.

Use strict egress filtering and you should be fine until detection/cleanup meyhods are developed/published.

sent from my toaster.

On Wed, Mar 24, 2021, 15:59 Fred Stluka via plug <> wrote:

Any idea how this attack gets in to a Linux server?  Or is it only
a threat once it has broken in through some other exploit?  Also,
any easy way to scan a system to see if it's there?  I didn't see
answers to these questions at the link you posted, and didn't
easily google answers either.

Fred Stluka -- -- Glad to be of service!
Open Source: Without walls and fences, we need no Windows or Gates.

On 3/11/21 2:37 PM, jeffv via plug wrote:
> Security researchers at Intezer have discovered a previously
> undocumented backdoor dubbed RedXOR, with links to a Chinese-sponsored
> hacking group and used in ongoing attacks targeting Linux systems.
> ___________________________________________________________________________
> Philadelphia Linux Users Group         --
> Announcements -
> General Discussion  --

Philadelphia Linux Users Group         --
Announcements -
General Discussion  --
Philadelphia Linux Users Group         --
Announcements -
General Discussion  --