This year we have seen a huge uptick in cryptomining malware against Linux servers. The usual attack vector is the following: A brute force attack against SSH accounts. Automated install of a pre-compiled binary once …
A new version of Sandfly has been released. Version 1.3 has the following changes: Container OS was switched from Alpine to Ubuntu Minimal for better compatibility and more up to date packages. TLS 1.1 has …
Sandfly 1.2.6 Released This version of Sandfly has many internal performance improvements. Some sandfly checks have been sped up over 50%. We have also added a variety of new sandfly checks, some of which are …
READ MORELinux File Masquerading and Malicious PIDs – Sandfly 1.2.6 Update