Summary: Palo Alto Networks has reported on a new Linux malware named Auto-Color, which provides threat actors with backdoor access to compromised devices. This malware has primarily targeted universities and government entities in North America and Asia, requiring explicit execution by the victim for activation. Auto-Color employs advanced evasion techniques, making it challenging to detect and remove without specialized software.
Affected: Universities and governments in North America and Asia
Keypoints :
- Auto-Color requires explicit execution on a vulnerable Linux system for deployment.
- Once deployed, it grants complete remote access, complicating removal efforts.
- The malware employs evasion tactics, including harmless file names and proprietary encryption for stealth.
- Palo Alto Networks has released indicators of compromise (IoCs) to assist in detection.
Source: https://www.securityweek.com/new-auto-color-linux-malware-targets-north-america-asia/
Views: 7