Fake PoC for Linux Kernel Vulnerability on GitHub Exposes Researchers to Malware


A proof-of-concept (PoC) that uses a crafty persistence technique to hide a backdoor has been found on GitHub, indicating that malicious actors are still keeping an eye on cybersecurity experts.

According to Uptycs researchers Nischay Hegde and Siddartha Malladi, “In this case, the PoC is a wolf in sheep’s clothing, harbouring malicious intent under the guise of a harmless learning tool.” “While masquerading as a kernel-level process, it silently dumps and runs a Linux bash script while operating as a downloader.”

Read More…