eBPF

LinkPro rootkit exploits Linux eBPF for stealthy attacks

October 18, 2025 በAI የተዘገበ

A new rootkit called LinkPro has been targeting GNU/Linux systems, using eBPF technology to hide malicious activities and evade detection. Discovered in a compromised AWS infrastructure, it spreads via vulnerable Jenkins servers and malicious Docker images. The malware provides attackers with remote access while masquerading as legitimate system components.