Bleeping Computer

Linux 'io_uring' security blindspot allows stealthy rootkit attacks

A significant security gap in Linux runtime security caused by the 'io_uring' interface allows rootkits to operate undetected on systems while bypassing advanced Enterprise security software. The flaw ...
Dark Reading

'RingReaper' Sneaks Right Past Linux EDRs

A stealthy post-exploit tool that surfaced earlier this year may well be one of the first real-world examples of malware that exploits a relatively modern Linux kernel interface for I/O operations, ...
CSOonline

Proof-of-concept bypass shows weakness in Linux security tools, claims Israeli vendor

An Israeli vendor was able to evade several leading Linux runtime security tools using a new proof-of-concept (PoC) rootkit that it claims reveals the limitations of many products in this space. The ...
InfoQ

Linux Security Tools Bypassed by io_uring Rootkit Technique, ARMO Research Reveals

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Dany Lepage discusses the architectural ...