eBPF

Elastic Security Labs has detailed the evolution of Linux rootkits in a two-part research series published on March 5, 2026. These modern threats exploit kernel features like eBPF and io_uring to remain hidden in cloud, IoT, and server environments. The research highlights how such rootkits evade traditional detection methods.

December 15, 2025 由 AI 报道

Oracle has updated its bpftune tool to version 0.4-1, enhancing automated tuning of Linux kernels using eBPF technology. The release improves usability with better documentation and focuses on optimizing network and memory settings in dynamic environments. This development aids system administrators in cloud and enterprise setups by reducing manual interventions.