A lot of focus on the malware itself, but not so much on the misconfigurations a... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		PhilipRoman on Oct 4, 2024 \| parent \| context \| favorite \| on: Perfctl: Stealthy malware targeting Linux servers A lot of focus on the malware itself, but not so much on the misconfigurations and vulnerabilities which enable it. Would love to see that list. Other than that, the evasion techniques look pretty traditional. And of course the privilege escalation is done by a polkit vulnerability...

fredsted on Oct 4, 2024 | [–]

It seems to be a RocketMQ vuln; it's described further down the page.

allkindsof on Oct 4, 2024 | [–]

Also more interested in what the misconfigs are.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact