Auto-Color - Geek Feed

Hackers exploit SAP NetWeaver bug to deploy Linux Auto-Color malware

August 1, 2025August 1, 2025 geekfeed0Tagged Actively Exploited, Auto-Color, CVE-2025-31324, Evasion, Initial Access, linux, malware, SAP, vulnerability

Hackers were spotted exploiting a critical SAP NetWeaver vulnerability tracked as CVE-2025-31324 to deploy the Auto-Color Linux malware in a cyberattack on a U.S.-based chemicals company. Cybersecurity firm Darktrace discovered the attack during an incident response in April 2025, where an investigation revealed that the Auto-Color malware had evolved to include additional advanced evasion tactics. Darktrace reports […]

3 mins read

New Auto-Color Linux backdoor targets North American govts, universities

February 26, 2025February 26, 2025 geekfeed0Tagged Auto-Color, Backdoor, Evasion, linux, Linux backdoor, linux malware, malware

A previously undocumented Linux backdoor dubbed ‘Auto-Color’ was observed in attacks between November and December 2024, targeting universities and government organizations in North America and Asia. According to Palo Alto Networks’ Unit 42 researchers who discovered the malware, it is highly evasive and difficult to remove from infected systems, capable of maintaining access for extended periods. The […]

3 mins read