Reverse Shell for Linux/Unix Systems

Hackers are exploiting vulnerabilities in Linux or Unix systems to gain unauthorized remote access with a reverse TCP shell, according to cybersecurity researchers at PwC. The malware, dubbed ‘SnappyTCP’, has two variants, allowing illicit activities such as executing commands, exfiltrating data, and compromising system security whilst hiding the hacker’s identity. The focus of these attacks is primarily on entities in the government, telecom, and IT sectors, with evidence of sustained use since 2017.