Cybersecurity researchers have disclosed a new backdoor program capable of stealing user login credentials, device information and executing arbitrary commands on Linux systems. The malware dropper has been dubbed “Facefish” by Qihoo 360 NETLAB team owing its capabilities to deliver different rootkits at different times and the use of Blowfish cipher to encrypt communications to the attacker-controlled server. The exact vulnerability exploited by the attacker for initial compromise remains unclear, but Juniper Networks noted that CWP has been plagued by dozens of security issues.
Source: https://thehackernews.com/2021/05/researchers-warn-of-facefish-backdoor.html