The Hacker News

Hackers Weaponize Windows Hyper-V to Hide Linux VM and Evade EDR Detection

"By isolating the malware and its execution environment within a VM, the attackers effectively bypassed many traditional host ...
Fudzilla

Hackers bypass Windows defences by installing Linux

Windows lets Linux virtual machines do what they like  Russian hackers have figured out how to bypass Windows security by ...

Russian hackers hit Windows machines via Linux VMs with new custom malware

Russian hackers known as Curly COMrades have been seen hiding their malware in Linux-based virtual machines (VM) deployed on ...
Cybernews

Russian hackers sneak a full Linux virtual machine inside Windows to run undetected

Russian hackers are abusing Microsoft Hyper-V to create a hidden Linux virtual machine within the victim’s host, enabling ...
The Register on MSN

Russian spies pack custom malware into hidden VMs on Windows machines

Curly COMrades strike again Russia's Curly COMrades is abusing Microsoft's Hyper-V hypervisor in compromised Windows machines to create a hidden Alpine Linux-based virtual machine that bypasses ...
Bleeping Computer

NPM nukes NodeJS malware opening Windows, Linux reverse shells

NPM has removed multiple packages hosted on its repository this week that established connection to remote servers and exfiltrated user data. These 4 packages had collected over 1,000 total downloads ...

Russian hackers abuse Hyper-V to hide malware in Linux VMs

The Russian hacker group Curly COMrades is abusing Microsoft Hyper-V in Windows to bypass endpoint detection and response ...
CSO Online

Russian APT abuses Windows Hyper-V for persistence and malware execution

Recently documented Curly COMrades group bypasses traditional host-based EDR solutions by spinning up VMs with deceptive ...