New Bifrost RAT Variant Targets Linux Devices, Mimics VMware Domain - #Bifrost
A new variant of the Bifrost remote access trojan targeting Linux systems has been discovered, which utilizes sophisticated evasion techniques.One technique involves using a deceptive domain resembling VMware's to avoid detection. Unit 42 researchers analyzed this Bifrost variant and found an ARM version with the same functionality, indicating expanded capabilities and targets.The report also mentions the FBI seizing Warzone RAT infrastructure, arrests of a malware vendor, and hackers exploiting a Windows Defender zero-day vulnerability to spread DarkMe malware.Palo Alto Networks discovered over 100 Bifrost instances recently, showing its popularity.This Bifrost rise highlights the need for Linux vigilance and proactive security.