A new SysUpdate malware variant has been discovered, targeting Linux systems with encrypted command-and-control (C2) traffic. Researchers developed a decryption tool using the Unicorn Engine to analyze and decrypt the malware’s communications.
Edward Kiledjian
@ekiledjian