The PolySwarm Blog

Analyze suspicious files and URLs, at scale, millions of times per day. Get real-time threat intel from a crowdsourced network of security experts and antivirus companies competing to protect you.

Symbiote Linux Malware

Jun 20, 2022 9:01:49 AM / by PolySwarm Tech Team posted in Threat Bulletin, Linux, Symbiote

0 Comments



Executive Summary

Intezer and BlackBerry recently reported on Symbiote, a difficult to detect Linux malware that relies on existing running processes to infect a system.

Read More

Pymafka Targets macOS, Windows, Linux

Jun 17, 2022 11:17:39 AM / by PolySwarm Tech Team posted in Threat Bulletin, Windows, Linux, Python, Pymafka, Cobalt Strike

0 Comments



Executive Summary

Sonatype recently reported on Pymakfa, a malicious Python package in the PyPl registry dropping Cobalt Strike on macOS, Windows, and Linux.

Read More

Enemybot IoT Malware

Jun 13, 2022 12:47:53 PM / by PolySwarm Tech Team posted in Threat Bulletin, Android, Linux, Enemybot, CMS

0 Comments



Executive Summary

AT&T Alien Labs recently reported on Enemybot, an internet of things (IoT) malware targeting content management systems (CMS), Linux, and Android.

Key Takeaways

Read More

BPFDoor Targets Linux Systems

May 20, 2022 11:44:39 AM / by PolySwarm Tech Team posted in Threat Bulletin, China, Linux, Red Menshen, BPFDoor, Telecommunications

0 Comments



Background

PwC Threat Intelligence recently reported on BPFDoor, a passive network implant for Linux targeting telecommunications providers. The activity was attributed to the Chinese nexus threat actor group Red Menshen.

Read More

AvosLocker Ransomware

Mar 18, 2022 10:31:01 AM / by PolySwarm Tech Team posted in Threat Bulletin, Windows, AvosLocker, Linux

0 Comments



Background

Qualys recently published a blog post on AvosLocker ransomware, which targets both Windows and Linux operating systems.

Read More

Subscribe to Email Updates

Lists by Topic

see all

Posts by Topic

See all

Recent Posts