Sign in Create account

#qubitstrike — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #qubitstrike, aggregated by home.social.

Thomas Strömberg @[email protected] · 2023-10-21 · 01:05 UTC

I got to take apart a fantastic bit of #Linux #malware this week and have published the results: https://unfinished.bike/qubitstrike-and-diamorphine-linux-kernel-rootkits-go-mainstream - #QubitStrike has a bit of everything:
- Two #Linux #rootkits (kernel and user-mode)
- Process hiding
- Credential theft
- SSH backdoor
- A viral component
- A cryptocurrency miner
- Telegram integration
I had a lot of fun with this one. Now to convert these learnings into #detection rule updates!

#rootkits #qubitstrike #malware #linux #detection