LinkPro: An eBPF-Based Rootkit Hiding Malicious Activity on GNU/Linux

LinkPro: An eBPF-Based Rootkit Hiding Malicious Activity on GNU/Linux

Security researchers from Synacktiv CSIRT have uncovered a sophisticated Linux rootkit dubbed LinkPro that leverages eBPF (extended Berkeley Packet Filter) technology to establish persistent backdoor access while remaining virtually invisible to traditional monitoring tools. The infection chain originated from a vulnerable Jenkins server exposed to the internet, exploited through CVE-2024-23897.

Source: GBHackers

Date:

17 October 2025

Categorie(s):

Tag(s):

IT, Linux, News, OS, Rootkits

Zoomers are officially worse at passwords than 80-year-olds18 November 2025
Seven npm Packages Use Adspect Cloaking to Trick Victims Into Crypto Scam Pages18 November 2025
Beyond IAM Silos: Why the Identity Security Fabric is Essential for Securing AI and Non-Human Identities18 November 2025
Learn How Leading Companies Secure Cloud Workloads and Infrastructure at Scale18 November 2025
Can Generative AI Be Weaponized for Cyberattacks?18 November 2025