Discover Hacks/Cracks News

New Syslogk Linux Rootkit Uses Magic Packets to Trigger Backdoor

Anthony Pell

1 min read Jun 13, 2022

A new Linux rootkit malware named ‘Syslogk’ is being used in attacks to hide malicious processes, using specially crafted "magic packets" to awaken a backdoor laying dormant on the device.

The malware is currently under heavy development, and its authors appear to base their project on Adore-Ng, an old open-source rootkit.

Syslogk can force-load its modules into the Linux kernel (versions 3.x are supported), hide directories and network traffic, and eventually load a backdoor called ‘Rekoobe.’

Read this full article at Bleeping Computer

Discover Hacks/Cracks News

New Syslogk Linux Rootkit Uses Magic Packets to Trigger Backdoor

Anthony Pell

Threat Actors Are Actively Using Pupy RAT Malware to Attack Linux Systems

Linux Version of DinodasRAT Raises Serious Security Concerns

Analyzing AcidPour: A New and Evolving Linux Malware Threat

LinuxSecurity Poll

How did you hear about LinuxSecurity.com?

Get the Latest News & Insights

News

Advisories

HOWTOs

Features

About Us

Powered By

Discover Hacks/Cracks News

New Syslogk Linux Rootkit Uses Magic Packets to Trigger Backdoor

Anthony Pell

Related Articles

Get the Latest News & Insights

Threat Actors Are Actively Using Pupy RAT Malware to Attack Linux Systems

Linux Version of DinodasRAT Raises Serious Security Concerns

Analyzing AcidPour: A New and Evolving Linux Malware Threat

LinuxSecurity Poll

How did you hear about LinuxSecurity.com?

Get the Latest News & Insights

News

Advisories

HOWTOs

Features

About Us

Powered By