Showboat
Coverage of Showboat in the Nexus archive.
- Showboat Linux Malware Hits Middle East Telecom with SOCKS5 Proxy Backdoor
Cybersecurity researchers have disclosed a new Linux malware called Showboat that has been targeting a Middle East telecommunications provider since mid-2022. The malware is a modular post-exploitation framework capable of spawning remote shells, transferring files, and functioning as a SOCKS5 proxy backdoor.
- Chinese hackers target telcos with new Linux, Windows malware
Chinese hackers have launched a cyber-espionage campaign targeting telecommunications providers using two newly discovered malware variants: Showboat for Linux systems and JFMBackdoor for Windows systems. This attack represents a significant threat to critical infrastructure in the telecom sector.
- Chinese APTs Share Linux Backdoor in Central Asia Telco Attacks
Chinese Advanced Persistent Threat (APT) groups have been using a Linux backdoor called 'Showboat' to target telecommunications providers in Central Asia. The backdoor has been operational for an extended period, enabling Chinese espionage activities against small market communications infrastructure.