Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Ebury Botnet Malware Compromises 400,000 Linux Servers Over Past 14 Years" --> "... more than 100,000 were still compromised as of late 2023 ..." --> IoC in [2] --> "detection script" von ESET in [3] VG Bernd [0] https://thehackernews.com/2024/05/ebury-botnet-malware-compromises-400000.ht... [1] https://www.welivesecurity.com/en/eset-research/ebury-alive-unseen-400k-linu... [2] https://github.com/eset/malware-ioc/tree/master/windigo [3] https://github.com/eset/malware-research/tree/master/ebury -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler@itc.rwth-aachen.de https://www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/c/ITCenterRWTHAachen