Auto-Color: An Emerging and Evasive Linux Backdoor

Palo Alto Networks researchers discovered a new Linux malware called Auto-color, which employs evasive techniques to avoid detection and gain full remote access to compromised machines. The malware uses a custom encryption algorithm, hooks libc functions to hide network activity, and installs a malicious library implant to persist on the system. Auto-color communicates with remote servers using a custom protocol, making it challenging to remove without specialized software.