A report released today dives deep into technical aspects of a Linux backdoor now tracked as Bvp47 that is linked to the Equation Group, the advanced persistent threat actor tied to the U.S. National Security Agency.
That part really does stand out… though it sounds like the virus itself makes a way for itself to use PowerShell, not that it has to be already installed?
I am surprised someone would install powershell to a Linux server🙄…
No kidding. It’s like putting a bumper sticker on a Ferrari.
That part really does stand out… though it sounds like the virus itself makes a way for itself to use PowerShell, not that it has to be already installed?
?