Experts warn about the abilities of the new malware.
SentinelLabs security researchers discovered a new version of the AcidRain viper specifically designed to attack Linux x86 devices.
The malware, dubbed AcidPour, is a binary ELF file compiled to run on Linux x86, and has a completely different code base than AcidRain.
AcidPour is designed to remove content from RAID arrays and UBIFS file systems (Unsorted Block Image File System, UBI) by adding file paths such as "/dev/dm-XX" and "/dev/ubiXX", respectively.
It is currently unclear who the victims are, but SentinelOne has notified Ukrainian federal agencies. The exact scale of the attacks is currently unknown.
AcidRain first became known in 2022, when malware was deployed to attack the KA-SAT modems of the American satellite company Viasat. A binary ELF file compiled for MIPS architectures is capable of erasing the file system and various files for storage by recursively traversing shared directories for most Linux distributions.
SentinelLabs security researchers discovered a new version of the AcidRain viper specifically designed to attack Linux x86 devices.
The malware, dubbed AcidPour, is a binary ELF file compiled to run on Linux x86, and has a completely different code base than AcidRain.
AcidPour is designed to remove content from RAID arrays and UBIFS file systems (Unsorted Block Image File System, UBI) by adding file paths such as "/dev/dm-XX" and "/dev/ubiXX", respectively.
It is currently unclear who the victims are, but SentinelOne has notified Ukrainian federal agencies. The exact scale of the attacks is currently unknown.
AcidRain first became known in 2022, when malware was deployed to attack the KA-SAT modems of the American satellite company Viasat. A binary ELF file compiled for MIPS architectures is capable of erasing the file system and various files for storage by recursively traversing shared directories for most Linux distributions.
