ShellBot Malware Evades Detection Using Hexadecimal IP Addresses

Threat Level – Amber | Vulnerability Report
Download PDF

ShellBot malware, targeting poorly managed Linux SSH servers, now employs hexadecimal IP addresses in its download URLs to evade detection. This change highlights the need for strong security measures and regular updates for administrators to protect against ShellBot attacks on Linux servers.

To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn.

What’s new on HivePro

Get through updates and upcoming events, and more directly in your inbox