Pam Backdoor Targets Linux Systems to Steal SSH Credentials

A newly observed Linux backdoor technique, dubbed Pam, is exploiting the flexibility of Pluggable Authentication Modules (PAM) to capture SSH credentials and maintain persistence on compromised systems stealthily. Since its introduction in 1991 by Linu…

·

cyber security, Cyber Security News, Linux

¶¶¶¶¶

PoC Exploit Released for Dirty Frag Linux Kernel Vulnerability

A proof-of-concept exploit for a new Linux kernel vulnerability class dubbed “Dirty Frag”. This universal local privilege escalation vulnerability allows attackers to obtain root access across most major Linux distributions reliably. Becaus…

·

CVE/vulnerability, cyber security, Cyber Security News, Linux, vulnerability

¶¶¶¶¶

QLNX Targets Developers in Supply Chain Credential Theft Campaign

QLNX is a newly documented Linux remote access trojan (RAT) that targets the theft on developers’ and DevOps credentials to hijack software supply chains. Recent attacks against popular projects like LiteLLM on PyPI and the Axios npm package have shown…

·

cyber security, Cyber Security News, Linux

¶¶¶¶¶

CISA Flags Linux Kernel Vulnerability as Threat Actors Launch Attacks

The Cybersecurity and Infrastructure Security Agency (CISA) has officially added a high-severity Linux kernel vulnerability to its Known Exploited Vulnerabilities (KEV) catalog. Tracked as CVE-2026-31431, this flaw is currently being exploited in the w…

·

CVE/vulnerability, cyber security, Cyber Security News, Linux, vulnerability

¶¶¶¶¶

9-Year-Old Linux Kernel Vulnerability “Copy Fail” Enables Full Root Access

Linux Kernel Vulnerability “Copy Fail” lets attackers gain root access via memory flaw. Patch now or disable algif_aead to stay secure.

·

cybersecurity, Kernel, Linux, Security, Theori, vulnerability, Xint Code

¶¶¶¶¶

Linux Kernel 0-Day “Copy Fail” Grants Root Access Across Major Distros Since 2017

Security researchers have disclosed a critical zero-day vulnerability in the Linux kernel dubbed “Copy Fail” (CVE-2026-31431), which allows unprivileged local users to gain root access. Using a tiny 732-byte Python script, attackers can exp…

·

CVE/vulnerability, cyber security, Cyber Security News, Linux, vulnerability, Zero-Day, zeroday

¶¶¶¶¶

Pack2TheRoot: 12-Year-Old Linux PackageKit Flaw Enables Full Compromise

Security experts have found a high-severity flaw named Pack2TheRoot in PackageKit that allows hackers to gain full root access on multiple Linux distributions.

·

cybersecurity, Deutsche Telekom, Linux, Pack2TheRoot, PackageKit, Security, vulnerability

¶¶¶¶¶

New Linux FIRESTARTER Backdoor Targets Cisco Firepower Devices

CISA and NCSC warn that FIRESTARTER, a Linux-based backdoor, targets Cisco Firepower devices, evades patches, and enables persistent access even after firmware updates.

·

backdoor, Cisco, Cyber Attack, Firestarter, Firewall, Linux, Malware, Security, VPN

¶¶¶¶¶

Linux ELF Malware Generator Evades ML Detection With Semantic-Preserving Changes

As Linux continues to dominate high-performance computing, cloud services, and Internet of Things (IoT) devices, it has become a prime target for cybercriminals. However, while much research has focused on manipulating Windows executables to bypass sec…

·

cyber security, Cyber Security News, Linux, Linux malware, Malware

¶¶¶¶¶

Harvester APT Expands Spying Operations with New GoGra Linux Malware

New GoGra Linux malware linked to Harvester APT targets systems in South Asia, using fake PDFs and Microsoft APIs for covert command and control.

·

Afghanistan, Carbon Black, Cyber Attack, Cyber-Attacks, cybersecurity, GoGra, Harvester APT, India, Linux, Malware, Security, Symantec

¶¶¶¶¶

1010.cx

1010.cx

Category: Linux