eBPF (Extended Berkeley Packet Filter) is a very interesting kernel technology that lets users load tiny, sandboxed programs into the Linux kernel to inspect or modify network packets, system calls, and more. The technology was introduced in 2015 to replace the “old” BPF technology of 1992, which was no longer compatible with modern computer architectures (e.g., 64-bit). As usual, the technology was quickly noticed by malware authors, leading to the Bvp47 malware in 2015 and a collection of ro
symbiote (2)
Activity Summary - Week Ending on 1 July 2022:
- Red Sky Alliance identified 40,622 connections from new IP’s checking in with our Sinkholes
- MS hit 45 x – 2nd week
- Analysts identified 1,801 new IP addresses participating in various Botnets
- DeadLocker
- Symbiote
- Killnet
- СПИСОК_посилань_на_інтерактивні_карти[.]docx
- Apple, Google and theUS FTC
- Guns and California Data Hacks
Link to full report: IR-22-182-001_weekly182.pdf
