Hackers exploit weaknesses in e-commerce portals to deploy a Linux backdoor and a credit card skimmer. The skimmer is capable of stealing payment information from compromised websites. Researchers from Sansec Threat Research found a file upload vulnerability in one of the store’s plugins. The initial foothold was leveraged to upload a malicious web shell and alter the server code to siphon customer data. The attacker delivered a Golang-based malware called “linux_avp” that serves as a backdoor to execute commands remotely.”]
Source: https://thehackernews.com/2021/11/new-golang-based-linux-malware.html