The Hacker News

LinkPro Linux Rootkit Uses eBPF to Hide and Activates via Magic TCP Packets

The commands supported by LinkPro include executing /bin/bash in a pseudo-terminal, running a shell command, enumerating ...
The Hacker News

Hackers Deploy Linux Rootkits via Cisco SNMP Flaw in 'Zero Disco' Attacks

Cybersecurity researchers have disclosed details of a new campaign that exploited a recently disclosed security flaw ...
Techzine Europe

Hackers exploit Cisco vulnerability to install rootkit on switches

A new attack campaign, dubbed Operation Zero Disco by Trend Micro , exploits a vulnerability in Cisco's Simple Network ...
SecurityWeek

Cisco Routers Hacked for Rootkit Deployment

Older Cisco devices unpatched against a recent zero-day vulnerability have been infected with a rootkit in a new campaign.
Infosecurity Magazine

New Rootkit Campaign Exploits Cisco SNMP Flaw to Gain Persistence

Currently, there is no universal automated test to confirm compromise by this operation. If compromise is suspected, device owners are advised to contact Cisco TAC for a low-level firmware and ROM ...

Hackers exploit Cisco SNMP flaw to deploy rootkit on switches

Threat actors exploited a recently patched remote code execution vulnerability (CVE-2025-20352) in Cisco networking devices ...
CSO Online

‘Zero Disco’ campaign hits legacy Cisco switches with fileless rootkit payloads

Researchers warn of fileless payloads, memory hooks, and a UDP-based C2 controller that complicate detection and remediation.
PCQuest on MSN

The Invisible Hacker: LinkPro Rootkit Turns Linux’s Own Power Against Itself

LinkPro uses Linux’s own eBPF feature to stay invisible, redefining cyber espionage and proving that even Linux systems are ...