Fake Linux vulnerability exploit drops data-stealing malware

2023-07-13 18:28

Cybersecurity researchers and threat actors are targeted by a fake proof of concept CVE-2023-35829 exploit that installs a Linux password-stealing malware.

The fake PoC claims to be an exploit for CVE-2023-35829, a high-severity use-after-free flaw impacting the Linux kernel before 6.3.2.

In reality the PoC is a copy of an old, legitimate exploit for another Linux kernel vulnerability, CVE-2022-34918.

Using fake PoCs to target researchers and threat actors with malware is not new.

The North Korean Lazarus hackers are also believed responsible for a 2021 campaign using social media to target vulnerability researchers with fake PoCs that installed backdoors.

Fake zero-day PoC exploits on GitHub push Windows, Linux malware.

News URL

https://www.bleepingcomputer.com/news/security/fake-linux-vulnerability-exploit-drops-data-stealing-malware/

#exploit #linux #malware #vulnerability #CVE-2023-35829 #CVE-2022-34918

Related Vulnerability

DATE	CVE	VULNERABILITY TITLE	RISK
2023-06-18	CVE-2023-35829	Use After Free vulnerability in multiple products An issue was discovered in the Linux kernel before 6.3.2. local high complexity linux netapp CWE-416	7.0
2022-07-04	CVE-2022-34918	Type Confusion vulnerability in multiple products An issue was discovered in the Linux kernel through 5.18.9. local low complexity linux debian canonical netapp CWE-843	7.8

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Linux		18	378	1445	1141	696	3660

News URL

Related news

Related Vulnerability

Related vendor