The CVE-2023-36664 is caused by a not properly handle permission validation for pipe devices. The interpreter for the PostScript language and PDF files released fixes
Kaspersky cybersecurity experts: The malware, written in Rust, encrypts files on Windows, Linux and ESXi. It uses as encryption scheme an X25519-AES combination.
Akamai cybersecurity experts: It’s written in golang and and utilizes its built-in concurrency features to maximize spreadability and execute malware modules.
Intezer-BlackBerry cybersecurity experts: Once the malicious code is in the machine, it hides itself and any other malware, making infections very hard to detect.
ESET cybersecurity experts: To collect data or conduct other malicious activity, it uses modified legitimate binaries that are adjusted to load further components.