Stealthy GTPDOOR Linux malware targets mobile operator networks

March 4, 2024 at 02:08AM Security researcher HaxRob discovered a new Linux backdoor named GTPDOOR, targeting mobile carrier networks with a focus on GRX components. This tool, attributed to the ‘LightBasin’ threat group, can covertly communicate over GPRS Tunnelling Protocol Control Plane, bypassing traditional security solutions. The backdoor’s capabilities and detection strategies are detailed, along … Read more