eBPF

Follow

Linux rootkits advance with eBPF and io_uring techniques

Elastic Security Labs has detailed the evolution of Linux rootkits in a two-part research series published on March 5, 2026. These modern threats exploit kernel features like eBPF and io_uring to remain hidden in cloud, IoT, and server environments. The research highlights how such rootkits evade traditional detection methods.

Oracle releases bpftune 0.4-1 for automated Linux kernel tuning

Reported by AI

Oracle has updated its bpftune tool to version 0.4-1, enhancing automated tuning of Linux kernels using eBPF technology. The release improves usability with better documentation and focuses on optimizing network and memory settings in dynamic environments. This development aids system administrators in cloud and enterprise setups by reducing manual interventions.

December 11, 2025 18:56

Microsoft resumes work on Hornet security for Linux eBPF

December 04, 2025 00:05

BPFDoor and Symbiote rootkits exploit eBPF on Linux systems

October 18, 2025 00:07

LinkPro rootkit exploits Linux eBPF for stealthy attacks

This website uses cookies

We use cookies for analytics to improve our site. Read our privacy policy for more information.
Decline