Krasue RAT malware hides on Linux servers using embedded rootkits

Krasue, a remote access trojan, is targeting Linux systems within telecoms firms, especially in Thailand. The malware incorporates seven rootkit variants, which make the malware hard to detect and eliminate. Investigators believe that it could be sold to threat actors seeking particular targets. Although disseminated through unknown means, researchers suggest it could be shared through botnets, brute force attacks, or posing as a legitimate product.