But... Is the malware open source?
this post was submitted on 13 Jan 2026
48 points (100.0% liked)
Linux.zip
727 readers
19 users here now
Linux community for Lemmy.zip. ~~also this needs mods pretty bad~~ apparently not as bad as I thought (either that or this community isnt alive enough for troublemakers yet)
Community Rules:
- Do not violate any laws, third-party rights, and/or proprietary rights.
- Do not harass others, be abusive, threatening, and/or harmful.
- Do not be needlessly defamatory and/or intentionally misleading.
- Do not upload without marking obscene and/or sensitive content as such.
- Do not promote racism, bigotry, hatred, harm, and violence of any kind.
^i^ ^may^ ^or^ ^may^ ^not^ ^have^ ^stolen^ ^these^ ^rules^ ^from^ ^another^ ^linux^ ^community^ ^on^ ^another^ ^instance^
founded 2 years ago
MODERATORS
How interesting! It targets cloud services.
VoidLink can target machines within popular cloud services by detecting if an infected machine is hosted inside AWS, GCP, Azure, Alibaba, and Tencent, and there are indications that developers plan to add detections for Huawei, DigitalOcean, and Vultr in future releases.
That makes sense. The cloud runs Linux. Even Microsoft runs Linux in the cloud. With more high value assets moving to the cloud, and usually to Linux, the attackers are going to follow.
A corrolary suggests itself: You lose obscurity, you lose security.
On the other hand, Kerckhoffs's principle. For example SSH is not obscure, and it's considered safer than alternatives.
Oh shit, it fucked up my SuperTuxKart.