ESET researchers uncover "WolfsBane," a Linux backdoor linked to the China-based Gelsemium group. This is Gelsemium's first known Linux malware—hinting at a change in attack strategies.
Researchers believe the shift to Linux malware is due to improvements in Windows endpoint security. As a result, threat actors are exploring new attack avenues, increasingly focusing on exploiting flaws in internet-facing systems, most of which run on Linux.
I don‘t get the reasoning here… these servers ran Linux before so what has that to do with Windows endpoints?
I don‘t get the reasoning here… these servers ran Linux before so what has that to do with Windows endpoints?
Idk about the endpoints, but this seems to be targeting desktops and not servers, as those don’t have KDE.
Windows is harder, so less valuable to spend time on.
Dnnxnd
That is what the article says. Windows is definitely becoming a harder target and Linux is becoming way more common.
Linux’s customisability and use of a huge range of different softwares means there’s likely to be many more attack vectors.