Security News > 2022 > October > New Alchimist attack framework hits Windows, Linux and Mac
New Alchimist attack framework hits Windows, Linux and Mac.
During initialization, all its content is placed in hard coded folders, namely /tmp/Res for the web interface, HTML files and more folders, and /tmp/Res/Payload for its payloads for Windows and Linux operating systems.
The Alchimist framework user web interface is written in English and simplified Chinese languages.
More of such attack frameworks have been found lately.
The ease of use of such a framework will probably entice malware developers and threat actors to use more of those in the near future.
Security software should be deployed in order to detect the payloads and possible communications to Alchimist C2. The self-signed certificate used by the framework should raise immediate alerts when found in HTTPS communications.
News URL
https://www.techrepublic.com/article/alchimist-attack-framework-hits-windows-linux-mac/
Related news
- New BPFDoor Controller Enables Stealthy Lateral Movement in Linux Server Attacks (source)
- Windows NTLM vulnerability exploited in multiple attack campaigns (CVE-2025-24054) (source)
- Windows NTLM hash leak flaw exploited in phishing attacks on governments (source)
- Linux 'io_uring' security blindspot allows stealthy rootkit attacks (source)
- Malicious Go Modules Deliver Disk-Wiping Linux Malware in Advanced Supply Chain Attack (source)
- Play ransomware exploited Windows logging flaw in zero-day attacks (source)
- Hackers now testing ClickFix attacks against Linux targets (source)
- Microsoft fixes Linux boot issues on dual-boot Windows systems (source)
- Windows 11 and Red Hat Linux hacked on first day of Pwn2Own (source)
- Microsoft open-sources Windows Subsystem for Linux at Build 2025 (source)