Linux devices compromised via PRoot utility exploitation - SC Media

Linux devices are being hacked successful Bring Your Own Filesystem attacks exploiting the open-source Linux PRoot utility, BleepingComputer reports. Such attacks progressive the instauration of a malicious filesystem that already includes the web scanning tools, the XMRig cryptominer, and configuration files anterior to deployment, which is being facilitated by the PRoot utility, a Sysdig study showed. Through PRoot, menace actors would lone person to execute the precompiled room downloaded from GitLab without having to execute further setup commands. Malicious actors could besides leverage PRoot to alteration the download of different payloads that could let much terrible compromise. "Using PRoot, determination is small respect oregon interest for the targets architecture oregon organisation since the instrumentality smoothes retired the onslaught struggles often associated with executable compatibility, situation setup, and malware and/or miner execution. It allows attackers to get person to the doctrine of constitute once, tally everywhere, which is simply a agelong sought-after goal," said Sysdig.