Bkav experts discovered that Linux servers in Vietnam are at risk of being attacked to steal information and become botnets by a series of virus variants that once raged in China.
In October and November, receiving requests from businesses, Bkav experts reviewed Linux servers and discovered many virus samples that were variants of the Elknot virus family. This is an ELF format virus, which is a binary file that runs on Linux operating systems.
The main behaviors of Elknot variants include: stealing information from the server they infect; taking control, executing remote commands from hackers, turning the server into a bot in a DDOS attack botnet.
To make it difficult to investigate and remove, the virus disguises itself and replaces system tools such as network tools (netstat, ss), process management tools (ps). In addition, the virus is also capable of using many different methods to automatically start with the system.
To avoid being attacked by this malware, Bkav recommends: Administrators should immediately scan for viruses on servers and do so regularly; Businesses need to have policies or regulations on periodically assessing the security of public server services, updating new versions and patches for services running on servers; Use anti-virus software and network security solutions to ensure the safety of personal computers as well as systems in agencies, organizations, businesses...
BA TAN
Source
![[Photo] General Secretary To Lam, Secretary of the Central Military Commission attends the 12th Party Congress of the Army](https://vphoto.vietnam.vn/thumb/1200x675/vietnam/resource/IMAGE/2025/9/30/9b63aaa37ddb472ead84e3870a8ae825)
![[Photo] Panorama of the cable-stayed bridge, the final bottleneck of the Ben Luc-Long Thanh expressway](https://vphoto.vietnam.vn/thumb/1200x675/vietnam/resource/IMAGE/2025/9/30/391fdf21025541d6b2f092e49a17243f)
![[Photo] President Luong Cuong receives President of the Cuban National Assembly Esteban Lazo Hernandez](https://vphoto.vietnam.vn/thumb/1200x675/vietnam/resource/IMAGE/2025/9/30/4d38932911c24f6ea1936252bd5427fa)
![[Photo] The 1st Congress of Phu Tho Provincial Party Committee, term 2025-2030](https://vphoto.vietnam.vn/thumb/1200x675/vietnam/resource/IMAGE/2025/9/30/1507da06216649bba8a1ce6251816820)
![[Photo] Solemn opening of the 12th Military Party Congress for the 2025-2030 term](https://vphoto.vietnam.vn/thumb/1200x675/vietnam/resource/IMAGE/2025/9/30/2cd383b3130d41a1a4b5ace0d5eb989d)
Comment (0)