skip to Main Content

Cybercrime, RedXOR is a new malware which targets Linux systems

Intezer: RedXOR is a new malware which targets Linux systems. It’s a backdoor linked to the Chinese state-sponsored hacking collective Winnti. It has meny capabilities and can be updated

RedXOR is a new malware which targets Linux systems. It has been discovered by Intezer cybersecurity experts. It’s a backdoor masqueraded as polkit daemon, and linked to the Chinese state-sponsored hacking collective Winnti. It has a large set of capabilities, including executing commands with system privileges, managing files on infected Linux boxes, hiding its process using the Adore-ng open-source rootkit, proxying malicious traffic, remote updating, and more. Furthermore, the malware can be updated by the threat actor.

Back To Top