The Linux malware called “Outlaw” is maintaining a long-term botnet through basic yet effective techniques, including multiple-stage infection processes, brute-force attacks on systems with weak credentials and modified cryptocurrency miners. Outlaw also has an IRC-based backdoor that allows for the control of infected systems. Despite a shortage of sophisticated evasion mechanisms, its simple design has proven to be effective as its predictable behaviour offers opportunities for detection.
Mandiant warns of attacks on newly-disclosed Ivanti remote takeover threat
Google’s Mandiant team has issued an alert about a remote code execution flaw in the Ivanti Connect Secure VPN platform. The vulnerability, designated CVE-2025-22457, is
