A classy malware pressure has contaminated hundreds of Linux techniques since 2021, exploiting over 20,000 frequent misconfigurations and a essential Apache RocketMQ vulnerability, researchers at Aqua Safety reported. Dubbed Perfctl, the malware employs superior stealth methods, together with rootkit set up and course of title mimicry, to evade detection. It persists by means of system reboots by modifying login scripts and copying itself to a number of disk places. Perfctl hijacks techniques for cryptocurrency mining and proxy companies, whereas additionally serving as a backdoor for added malware. Regardless of some antivirus detection, the malware’s capability to restart after elimination has annoyed system directors.