The Hacker News

LinkPro Linux Rootkit Uses eBPF to Hide and Activates via Magic TCP Packets

The commands supported by LinkPro include executing /bin/bash in a pseudo-terminal, running a shell command, enumerating ...
Techzine Europe

Hackers exploit Cisco vulnerability to install rootkit on switches

A new attack campaign, dubbed Operation Zero Disco by Trend Micro , exploits a vulnerability in Cisco's Simple Network ...
SecurityWeek

Cisco Routers Hacked for Rootkit Deployment

Older Cisco devices unpatched against a recent zero-day vulnerability have been infected with a rootkit in a new campaign.
CSO Online

‘Zero Disco’ campaign hits legacy Cisco switches with fileless rootkit payloads

Researchers warn of fileless payloads, memory hooks, and a UDP-based C2 controller that complicate detection and remediation.
Infosecurity Magazine

New Rootkit Campaign Exploits Cisco SNMP Flaw to Gain Persistence

Currently, there is no universal automated test to confirm compromise by this operation. If compromise is suspected, device ...
The Hacker News

Hackers Deploy Linux Rootkits via Cisco SNMP Flaw in "Zero Disco' Attacks

Cybersecurity researchers have disclosed details of a new campaign that exploited a recently disclosed security flaw ...
PCquest.com on MSN

The Invisible Hacker: LinkPro Rootkit Turns Linux’s Own Power Against Itself

LinkPro uses Linux’s own eBPF feature to stay invisible, redefining cyber espionage and proving that even Linux systems are ...

Hackers exploit Cisco SNMP flaw to deploy rootkit on switches

Threat actors exploited a recently patched remote code execution vulnerability (CVE-2025-20352) in Cisco networking devices ...