Experts have recently discovered an improved version of the BPFDoor malware for Linux, which seems to be harder to detect – as a result, no antivirus still marks this executable as malicious.

Cybersecurity researchers at Deep Instinct have noted that BPFDoor, which was first discovered in 2022, has been active since at least 2017. The tool got its name from its (over)use of the Berkley Packet Filter (BPF) it uses to obtain instructions and bypass any firewalls.

Leave a Reply

Your email address will not be published. Required fields are marked *