Drovorub is being deployed by the Russian-backed hacking group known as “Fancy Bear” or APT28. The malware is designed to target Linux systems, creating a backdoor into targeted networks to exfiltrate data. The FBI and NSA are encouraging organizations that use Linux to upgrade to Linux Kernel 3.7 or a later version. The rootkit allows hackers to plant the malware within a system and avoid detection, making it a useful tool for cyberespionage or election interference.”]
Source: https://www.cuinfosecurity.com/alert-russian-hackers-deploying-linux-malware-a-14829