**Lup Yuen Lee 李立源** @lupyuen@qoto.org · 2025-03-02T07:54:14Z

Lup Yuen Lee 李立源 @lupyuen@qoto.org

Auto-Color #Linux Malware: "writes the malicious library file name into /etc/ld.preload ... Since libraries in ld.preload are loaded first, a malicious library can override Core Libraries"

https://unit42.paloaltonetworks.com/new-linux-backdoor-auto-color/

Auto-Color: An Emerging and Evasive Linux Backdoor

The new Linux malware named Auto-color uses advanced evasion tactics. Discovered by Unit 42, this article cover its installation, evasion features and more. The new Linux malware named Auto-color uses advanced evasion tactics. Discovered by Unit 42, this article cover its installation, evasion features and more.

Unit 42

March 2, 2025 at 7:54 AM · · Tusky · · ·