eBPF

Elastic Security Labs has detailed the evolution of Linux rootkits in a two-part research series published on March 5, 2026. These modern threats exploit kernel features like eBPF and io_uring to remain hidden in cloud, IoT, and server environments. The research highlights how such rootkits evade traditional detection methods.

2025년 12월 15일 AI에 의해 보고됨

Oracle has updated its bpftune tool to version 0.4-1, enhancing automated tuning of Linux kernels using eBPF technology. The release improves usability with better documentation and focuses on optimizing network and memory settings in dynamic environments. This development aids system administrators in cloud and enterprise setups by reducing manual interventions.