Chinese APT Gelsemium Unleashes WolfsBane Malware on Linux Systems

November 21, 2024 at 10:44 AM

•

1 min read

Chinese APT Gelsemium Unleashes WolfsBane Malware on Linux Systems — Photo: We Live Security

TL;DR Summary

ESET researchers have discovered a new Linux backdoor named WolfsBane, attributed to the Gelsemium APT group, marking the first known use of Linux malware by this China-aligned threat actor. WolfsBane is the Linux counterpart to the Windows-based Gelsevirine backdoor, used for cyberespionage. Another backdoor, FireWood, was also found but is only tentatively linked to Gelsemium. This shift towards Linux malware by APT groups is attributed to enhanced security measures on Windows systems, prompting attackers to target vulnerabilities in Linux-based internet-facing systems.

Topics:technology #apt #cyberespionage #cybersecurity #gelsemium #linux #malware

Share this article

Unveiling WolfsBane: Gelsemium’s Linux counterpart to Gelsevirine We Live Security
Chinese hackers target Linux with new WolfsBane malware BleepingComputer
Researchers unearth two previously unknown Linux backdoors Help Net Security
Chinese APT Gelsemium Targets Linux Systems with New WolfsBane Backdoor The Hacker News
Chinese APT Gelsemium Deploys 'Wolfsbane' Linux Variant Dark Reading

Reading Insights

Total Reads

Unique Readers

Time Saved

18 min

vs 19 min read

Condensed

98%

3,667 → 81 words

Want the full story? Read the original article

Read on We Live Security

JavaScript Required

tl;dr daily news requires JavaScript to be enabled. Please enable JavaScript in your browser settings.

Related Sources

Reading Insights