The cybersecurity analysts at Sansec Threat Research, a Dutch cyber-security company, have recently discovered a new RAT (Remote Access Trojan) for Linux systems that utilizes a stealth method never seen before. This new malware hides its malicious activity by scheduling it on February 31st, a missing day on the calendar.
This stealthy malware has the ability to steal server-side data from e-commerce websites or bypass any security solutions that are browser-based, and they do so, by deploying online payment skimmers on the Linux servers.
Apart from this, this stealthy malware has been dubbed as CronRAT, which is characterized by two key factors:-
While in several online retailers, the samples of this RAT have been detected, and among them, there is one of the largest stores from a country that is unspecified.
Stealthy Hideout For Payloads
The ability to use the Unix cron job-scheduler utility to hide malicious payloads using the names of tasks that are scheduled to run on February…