The Hacker News

SSHStalker Botnet Uses IRC C2 to Control Linux Systems via Legacy Kernel Exploits

Researchers uncover SSHStalker, an IRC botnet exploiting legacy Linux flaws and SSH servers to build persistent covert access.
XDA Developers on MSN

I love Proxmox community scripts, but a single command executes 8 remote scripts as root

Do you know what your Proxmox server is actually running?
How-To Geek on MSN

BSD: What is it, and how is it different from Linux?

Learn the ABCs of BSD.
SecurityWeek

New ‘SSHStalker’ Linux Botnet Uses Old Techniques

The SSHStalker Linux botnet has ensnared 7,000 systems, deploying various scanners and malware, an IRC bot, and multiple kernel exploits.

8 Linux distros I always recommend first to developers - and why

The right Linux distro depends on your tools, workflow, and target platform. Some Linux distributions prioritize stability, while others focus on flexibility. Enterprise and DIY developers benefit ...

I've tested hundreds of Linux distros - these five are the easiest to install

These distros are easy to install, include the right apps, skip the bloat and ads, and automatically detect your hardware. Easy peasy. You're welcome.
The Hacker News

Malicious NGINX Configurations Enable Large-Scale Web Traffic Hijacking Campaign

Active React2Shell exploitation uses malicious NGINX configurations to hijack web traffic, targeting Baota panels, Asian TLDs ...

Hackers compromise NGINX servers to redirect user traffic

A threat actor is compromising NGINX servers in a campaign that hijacks user traffic and reroutes it through the attacker's ...

New Amaranth Dragon cyberespionage group exploits WinRAR flaw

A new threat actor called Amaranth Dragon, linked to APT41 state-sponsored Chinese operations, exploited the CVE-2025-8088 ...