NEWS
NEWS
Another Linux Malware Discovered; TUXEDO Computers Announces a New InfinityBook; SUSE Dives into the Agentic AI Pool; Linux Now Runs Most Windows Games; Fedora 43 Has Finally Landed; KDE Unleashes Plasma 6.5; Xubuntu Site Possibly Hacked; LMDE 7 Now Available.
Another Linux Malware Discovered
Curly COMrade – a Russian hacking group that's been active since 2024 and is aligned with Russian political movements – has been abusing the Microsoft Hyper-V within Windows to bypass detection by creating a virtual machine (VM) based on Alpine Linux to deploy malware.
The VM only uses 120MB of disk space and 256MB of memory, making it less detectable. Once the VM has been deployed, the malware uses the CurlyShell reverse shell and the CurlCat reverse proxy for stealth and communication.
According to Bitdefender (https://businessinsights.bitdefender.com/curly-comrades-evasion-persistence-hidden-hyper-v-virtual-machines), "By isolating the malware and its execution environment within a VM, the attackers effectively bypassed many traditional host-based EDR [endpoint detection and response] detections. EDR needs to be complemented by host-based network inspection to detect C2 traffic escaping the VM, and proactive hardening tools to restrict the initial abuse of native system binaries."
[...]
Buy this article as PDF
(incl. VAT)
Buy Linux Magazine
Subscribe to our Linux Newsletters
Find Linux and Open Source Jobs
Subscribe to our ADMIN Newsletters
Support Our Work
Linux Magazine content is made possible with support from readers like you. Please consider contributing when you’ve found an article to be beneficial.
News
-
Chaos Comes to KDE in KaOS
KaOS devs are making a major change to the distribution, and it all comes down to one system.
-
New Linux Botnet Discovered
The SSHStalker botnet uses IRC C2 to control systems via legacy Linux kernel exploits.
-
The Next Linux Kernel Turns 7.0
Linus Torvalds has announced that after Linux kernel 6.19, we'll finally reach the 7.0 iteration stage.
-
Linux From Scratch Drops SysVinit Support
LFS will no longer support SysVinit.
-
LibreOffice 26.2 Now Available
With new features, improvements, and bug fixes, LibreOffice 26.2 delivers a modern, polished office suite without compromise.
-
Linux Kernel Project Releases Project Continuity Document
What happens to Linux when there's no Linus? It's a question many of us have asked over the years, and it seems it's also on the minds of the Linux kernel project.
-
Mecha Systems Introduces Linux Handheld
Mecha Systems has revealed its Mecha Comet, a new handheld computer powered by – you guessed it – Linux.
-
MX Linux 25.1 Features Dual Init System ISO
The latest release of MX Linux caters to lovers of two different init systems and even offers instructions on how to transition.
-
Photoshop on Linux?
A developer has patched Wine so that it'll run specific versions of Photoshop that depend on Adobe Creative Cloud.
-
Linux Mint 22.3 Now Available with New Tools
Linux Mint 22.3 has been released with a pair of new tools for system admins and some pretty cool new features.