Linux that was assumed to be "safe" from malware is getting attention from attackers. RedXOR is a Linux malware allegedly attributed to Chinese hackers. RedXOR comes with a large set of capabilities, including executing commands with system privileges, managing files on infected Linux boxes, hiding its process using the Adore-ng open-source rootkit, proxy-ing malicious traffic and remote updating.
RedXOR Backdoor Sample 1 Signatures
RedXOR Backdoor Sample 1 Download
RedXOR Backdoor Sample 2 Signatures
RedXOR Backdoor Sample 2 Download