Ars Technica

Never-before-seen Linux malware is “far more advanced than typical”

Researchers have discovered a never-before-seen framework that infects Linux machines with a wide assortment of modules that are notable for the range of advanced capabilities they provide to ...
Ars Technica

Thousands of Linux systems infected by stealthy malware since 2021

Thousands of machines running Linux have been infected by a malware strain that’s notable for its stealth, the number of misconfigurations it can exploit, and the breadth of malicious activities it ...
Bleeping Computer

New VoidLink malware framework targets Linux cloud servers

A newly discovered advanced cloud-native Linux malware framework named VoidLink focuses on cloud environments, providing attackers with custom loaders, implants, rootkits, and plugins designed for ...
Milwaukee Journal Sentinel

Sandfly Security and Carahsoft Partner to Bring Agentless Linux EDR to the Public Sector

RESTON, VA, UNITED STATES, March 18, 2026 /EINPresswire.com/ — Sandfly Security, provider of agentless Linux endpoint detection and response, and Carahsoft ...
InfoQ

Linux Security Tools Bypassed by io_uring Rootkit Technique, ARMO Research Reveals

Security researchers at ARMO have uncovered a significant vulnerability in Linux runtime security tools that stems from the io_uring interface, an asynchronous I/O mechanism that can completely bypass ...
CSOonline

How ‘Plague’ infiltrated Linux systems without leaving a trace

Security researchers have discovered an unusually evasive Linux backdoor, undetected even by VirusTotal, compromising systems as a malicious pluggable authentication module (PAM). Dubbed “Plague” by ...
Network World

All-in-one Linux security distribution touts ease of use, advanced features

If you haven’t checked out Endian Firewall yet, download the code and give it a try. Endian Firewall is a packaged Linux security distribution that combines several open source firewall, VPN and ...